Security firms have recently started warning users about a new variant of the Changeup malware. In order to spread this malicious element, cybercriminals have launched a new spam campaign.When they described the attack, researchers from Symantec revealed that the fake notifications, entitled “You have received a secure message,” apparently originating from financial institutions, were used.
According to Hoax Slayer, there are several variants of these emails making the rounds. Some of them claim to come from Bank of America or Australia's Commonwealth Bank, while others purport to come from Cisco, the world-renowned networking solutions provider.
In order to avoid falling victims to such attacks, users are advised to refrain from opening attachments or clicking on links that arrive via suspicious emails. They’re also advised to ensure that an antivirus solution is running in the background to protect them against known cyber threats.
Here’s what the Changeup-spreading emails look like:
“You have received a secure message
Read your secure message by opening the attachment, SecureMessage.zip. You will be prompted to open (view) the file or save (download) it to your computer. For best results, save the file first, then open it.
If you have concerns about the validity of this message, please contact the sender directly. For questions about [bank name] e-mail encryption service, please contact technical support at [phone number]
First time users - will need to register after opening the attachment.”