Softpedia
 
HomepageWindowsGamesDriversMacLinuxScripts buttonMobileHandheldNews

NEWS CATEGORIES:



NEWS ARCHIVE >>
SOFTPEDIA REVIEWS >>
MEET THE EDITORS >>
TRENDING TODAY
Home > News > Security > Spam Reports

May 12th, 2009, 08:07 GMT · By

Fake Western Union E-mails in Circulation

SHARE:

Adjust text size:

Trojans distributed through Western Union e-mails
Enlarge picture
Security researchers warn of a new attack targeting Western Union customers. Fake e-mails claim to be notices of failed transfers warranting a refund. The invoice file attached is, actually, a computer trojan.

In these hard times, economically wise, few people are bound to refuse the chance of cashing in some free money. Unfortunately, malware distributors are also aware of this and, as always, are trying to profit from the social impact of the economic recession.

E-mails with subjects like "Western Union Transfer MTCN: ##########" (where # is a random digit) have been recently caught by spam traps. "The money transfer you have sent on the 13th of March has not been collected by the recipient. According to the Western Union agreement, the transfers which are not received in 15 days are to be returned to sender," their message reads.

At this point, one might be thinking that, even if they were not the intended recipient and this e-mail might have reached them accidentally, they could still get the money. And the social trickery continues, as it is apparently easy to do so, because "To collect cash you need to print the invoice attached to this e-mail and visit the nearest Western Union branch."

So, you now have two reasons to open the attached file. For one, to see how much money you could potentially get for free and if it's worth making a trip to the nearest Western Union, and, secondly, you need the document contained. Too good to be true?

Of course, because "opening the attached file wouldn't be the smartest move you've ever made in life, as it contains a malicious Trojan horse," according to Graham Cluley, senior technology consultant at antivirus vendor Sophos.

But there's more to this e-mail. "Interestingly, the malicious emails append some text to the bottom of each message to make it appear as though your mail gateway has scanned the message and determined it not to be spam," Mr. Cluley explains. This is not a new technique, but it certainly adds to its credibility.

This latter threat continues on the trend of spam campaigns targeting financial institutions. Just a few days ago, we reported about a similar scheme aimed at tricking WorldPay costumers through fake transaction-confirmation e-mails and, of course, accompanying invoices.


5,731 hits · 1 comment
Link to this article · Print article · Send to friend

MUST-READ RELATED ARTICLES:


WorldPay Customers Targeted by Malware Distributors
Phishers Target UK Citizens Affected by the Economic Crisis
Malware Distributors Trick Users with Fake Identity-Theft Alerts
Fake Delta Air Lines E-mails Spread Malware
Your Delivery Failed – Have This Trojan Instead

READER COMMENTS:


Comment #1 by: akulian53 on 27 Mar 2012, 23:46 UTC reply to this comment

does Western Union want the frauds fo9rwarded to them? I keep getting them, but they don't stop coming. usually delegate them to spam.

Copyright © 2001-2013 Softpedia. Contact/Tip us at

WindowsGamesDriversMacLinuxScriptsMobileHandheldNews

SUBMIT PROGRAM   |   ADVERTISE   |   GET HELP   |   SEND US FEEDBACK   |   RSS FEEDS   |   UPDATE YOUR SOFTWARE   |   ROMANIAN FORUM
© 2001 - 2013 Softpedia. All rights reserved.
Softpedia® and the Softpedia® logo are
registered trademarks of SoftNews NET SRL.		 Copyright Information | Privacy Policy | Terms of Use