14 DAY TRIAL // Internet users are advised to be on the lookout for fake emails that appear to come from a Xerox WorkCentre device. Experts warn that these emails carry a dangerous piece of malware.
According to Bitdefender, the emails are titled “Scan from a Xerox WorkCentre” and they read something like this: “Please download the document. It was scanned and sent to you using a Xerox multifunction device.”
There are two files attached to the email: a text file and an archive that allegedly contains the scanned document. The archive actually hides a piece of malware (Trojan.GenericKDV.1210899) that looks for vulnerable software in an effort to download additional threats.
Among these additional threats experts spotted a variant of ZeuS, the notorious Trojan designed to steal personal and financial information.
Bitdefender has observed 10,000 of these emails being sent out in less than an hour.
It appears the attack is mainly targeted at corporate users. And to make everything more legitimate-looking, the malicious emails are designed to look as if they come from someone within the company.