14 DAY TRIAL // Sophos experts warn users about fake “Express Shipment Notifications” purporting to come from DHL Express International. The malicious emails are designed to trick users into opening an attachment that contains a piece of malware.
The archive that’s attached to the messages hides a Trojan horse identified by Sophos as Troj/BredoZp-S.
DHL, FedEx and other shady notifications that appear to come from courier companies are not uncommon. However, cybercriminals still rely on them to distribute malware, most likely because they can use them to target a wider range of internauts.
In order to protect yourself against such threats, make sure that an updated antivirus is always running in the background.
Also, beware of shady-looking notifications that carry attachments or ones that contain links pointing to websites hosted on suspicious domains.