Beware of Malware Infected Email Notifications from Express Shipment Companies
Hackers Masked as High Profile Express Shipping Industries Attacking Your Computers
Recently, there has been an increase in express mail deliveries received via email titled “Express Shipment Notification” or “Shipping Detail” claiming to be from companies like FedEx or DHL Express.
If you have ever received this type of email, please beware as the email could potentially be a malicious virus waiting to attack your computer.
Cybercriminals have forward several spam messages indicating that you have an item waiting for you via DHL Express International or FedEx. The message goes on to state that the package (to be received by e-mail) is intended to protect customers and PC users from malware viruses.
Along with the subject line reading “Express Shipment Notification” or “Shipping Detail”, the email states that the attachment is from DHL Express International or FedEx sometimes even containing the following:
- Custom reference number
- Tracking number
- Pick-up date
- Service type
- Number of pieces (# of packages)
The email also may have a disclaimer stating not to reply to this email.
In some cases a fake FedEx variant of malicious spam messages have a “Print Receipt” button, which is a link to a malicious site that downloads and installs malware onto your computer.
Unfortunately, malware is attached to the email within a zip file. The zip filename is not the same in every scenario and can vary from email to email; however, it appears in the following format: reportXXXXXX.zip. The X’s attached at the end are random codes.
The attachment is being referred to as the Troj/BredoZp-S Trojan horse.
Obviously the emails are not stemming from DHL Express International or FedEx. On a good note, just because the email indicates it is coming from DHL International, it does not indicate or insinuate that FedEx or DHL has been breached or compromised. However, it clearly indicates that a cybercriminal and/or hacker have created an email address and false notifications to be sent to malware victims.
Over time, customers, users and victims alike have – at one time or the other – come across such malicious criminals that embed their viruses within notifications claiming to be that of FedEx, UPS and DHL. Several users have also seen this type of scam claiming to be from Verizon, AT&T and Amazon.
Protecting yourself must be your number one priority when trying to safeguard your computers against cyber hackers and their malware attacks. The best way this can be accomplished is to not only run your anti-virus software to detect any ill-willed threats, but also to always be cautious of weary emails that you receive from companies as well as, family and friends; these emails could be the work of a hacker in disguise.
Tips for Protecting Your PC from fake shipping notification spam messages
- Never open unsolicited emails
- Never assume package tracking emails are legitimate
- Never download attachments from emails that seem the least bit suspicious
- Avoid clicking on links in suspicious email messages. Some of the sites are designed to phish personal information or spread malware.
- Always run antimalware or antivirus software to proactively prevent, detect or remove malware threats received through potentially harmful spam emails.