14 DAY TRIAL // Emails that inform users that they’ve received a “iGO4 Private Car Insurance Policy Amendment Certificate” are being sent out by cybercriminals. The role of these fake notifications is to help the cybercrooks in distributing malware.
Webroot’s Dancho Danchev has analyzed the campaign.
The fake emails inform recipients of the following: “The request for an adjustment to your Private Car policy has been carried out.”
Internauts who are curious to find out what’s inside the malicious attachment, named “certificate.pdf.exe,” risk installing a new version of the Trojan-PSW.Win32.Tepfer (Kaspersky detection) malware.
Currently, the databases of only 27 antivirus products include the signature for this particular threat. Fortunately, modern security solutions should be capable of identifying the Trojan based on its behavior.
According to Danchev, this campaign is run by the same individuals that are sending out the bogus Westminster Hotel reservation emails.
Make sure you avoid opening files attached to such emails, and ensure that you have an antivirus solution running in the background.