LogMeIn users are advised to be on the lookout for emails entitled “LogMeIn Account Notification – Account locked,” that appear to come from a legitimate email address. The fake notifications are used by cybercriminals to spread a piece of malware.
According to MX Lab, the malicious emails contain links that point to a website that’s designed to push a variant of the notorious ZeuS malware onto the computers of unsuspecting users.
For the time being, only a few antivirus products detect the file as being malicious.
Here’s what the emails look like:
“Dear LogMeIn User,
Your LogMeIn.com account has been locked due to several unsuccessful login attempts.
Event: Account locked Source: Website At: 3/6/2013 4:46 AM From: 42.12.172.6
To unlock your account, you will need to complete the following unlock form : [link]
After the form has been completed, forward a scanned copy to [email protected]. (Please do not reply to this email, as it’s sent from an address that’s not monitored.)
If you need additional help, visit LogMeIn Support at: [link]
Regards, LogMeIn.com Support”