Bogus BBB Complaints Carry ZeuS Downloader

Bitdefender researchers have analyzed this new wave of fake emails

By on January 25th, 2013 22:01 GMT

Cybercriminals are leveraging the name and reputation of the Better Business Bureau in an attempt to spread pieces of malware.

Bitdefender experts warn of a new wave of fake BBB emails which carry a ZeuS downloader and a password stealer.

Entitled something like “Case3J8UI4ZI,” the emails inform recipients that the BBB has received a complaint.

“The Better Business Bureau has received the above-referenced complaint from one of your customers regarding their dealings with you. The details of the consumer’s concern are included on the reverse. Please review this matter and advise us of your position,” the emails read.

The .zip file attached to the notification is not a complaint. Instead, the archive hides a ZeuS downloader and a password stealer.

In an effort to disguise the malicious element, the attackers have fitted the .exe file with an Adobe Reader icon.

Users are advised to avoid opening attachments that come via suspicious BBB emails. If you want to help out the BBB, forward malicious messages to phishing@council.bbb.org.

Comments