Fake UPS Email Campaign Delivers Malware Cocktail

I did some online shopping last weekend. Received this email on 3/23. It just said it was from United Postal Service. And like a fool, thinking it had to do with my recent shopping, I opened the email, though the attachment wouldn't open. It said I didn't have the right program to open it. Does just opening the email put the virus on my computer or would I have had to open the attachment? I'm running malwarebytes and plan to run a couple of other virus scans after to be sure my computer is virus free.

Think I might need to correct previous posting. The email that I received said From: United Parcel Service. I think I might have mistakenly wrote From: United Postal Service. Also, it was signed United Parcel Service of America.

There are actually two such campaigns going on right now. One abuses UPS's (United Parcel Service) brand and the other UPSP (United States Postal Service). Both carry malware.

If you opened it, we recommend running a full system scan, preferably from outside the system using an anti-malware rescue disk, such as Kaspersky's Rescue Disk (others are available too). It's completely free.

Download the CD image from http://www.softpedia.com/get/Antivirus/Kaspersky-Rescue-Disk.shtml , burn it and boot from the optical disk. It won't install anything on the hard drive. Everything will run from the memory. Perform an update of the definitions before you start scanning.

I get UPS shipments daily and shipment notices are common. I was multitasking, not paying full attention, when I clicked on it and in one second realized what I did. It was already too late! Now how do I clean this mess up??

If you opened it, we recommend running a full system scan, preferably from outside the system using an anti-malware rescue disk, such as Kaspersky's Rescue Disk (others are available too). It's completely free.

Download the CD image from http://www.softpedia.com/get/Antivirus/Kaspersky-Rescue-Disk.shtml , burn it and boot from the optical disk. It won't install anything on the hard drive. Everything will run from the memory. Perform an update of the definitions before you start scanning.

Do you have a security program? If so have it run a full system scan and then call your local geek boys and have them come out to look at it and have it removed (btw to get it removed it will cost money)

I just received a fake UPS email last night...June 14, 2011. It has a .zip file attached. I deleted the email. The big tip off is an obviously fake tracking number.

Thats when I got Mine

I just got that email recently and I could easily tell it was a fake for several reasons:
1) The pictures where all blurry and distorted like the pixels where stretched
2) The 'company' that sent the email forgot to hide the other email addresses, so I could see the other people who got that email. Ex: The first part of my email is Pokadotz and I could see others like Purplepokadotz.
3) I have a security thing that scans all of the attachments before they open, so I did that and just as I thought, it had a virus.

I received a similar email yesterday, with a .zip attachment. I was immediately suspicious as I couldn't remember ordering anything, and there were spelling mistakes on the picture, e.g. "business" was incorrectly spelled "buisness". Anyway, I opened up my browser and went directly to United Parcel Services to check the tracking number and found that it was invalid. I then looked for more information on their site and found the details of the fraudulent emails. I forwarded the email to them and to my email service provider and to our national internet fraud service, and then deleted it completely from my computer and my external mailboxes. I feel sorry for UPS, and for the people who regularly use their service and who may have been affected by this fraud.

Why is everyone crowding the comments with tales of how they were too smart, savvy, cynical, etc. to fall for this? My father-in-law works at Fedex and my mother-in-law fell for a FedEx-variant. But no one is gonna know that because you people are too busy being uber-geeks.

Tell it to your cats. Most people would rather give/get help here on this issue than listen to your grandstanding. We can take a poll if you don't believe me.

shaddup, we can't all be as brilliant as you

I received a newer version of this in my e-mail today, claiming a parcel was at my post office and I had to open an attachment to get a label to claim it, and could be responsible for charges if I did not collect!! Bin it!!