sb-au logo
Story image

DHL phishing email drops malicious .exe file on curious victims

24 Jan 2017

Another phishing email is doing the rounds in Australian inboxes, and this time it’s a fake email that appears from trusted courier company DHL.

Experts at MailGuard picked up on the scam in a blog post, which described that the fake email appears to contain details about a package being sent to the victim.

MailGuard says the email, sent from “DHL-Services Notification” contains an attachment with the ‘details’, but it is actually a malicious Trojan.

That Trojan is not a word document or PDF; it is an automatically executable .exe file that can monitor infected systems and potentially steal sensitive information.

MailGuard says those infected with the malware may not know they have been targeted until later when their details and bank accounts have been stolen.

The company says that DHL, Fedex and Australia Post are popular targets for scammers, as they are seen as trustworthy organisations with large customer bases. Victims are also curious about potential parcels coming their way, which makes them susceptible to clicking on fake emails.

MailGuard suggests that users trash emails that:

Don’t address you by name, use poor English or leave out crucial details that genuine senders would provide, such as tracking IDs

Are from senders you do not expect to receive emails from

Have attachments or downloads, especially those with .exe file extensions

Send you to a website that does not match the URL the email is supposed to be from.

Story image
Ripple20 threat has potential for 'vast exploitation', ExtraHop researchers find
One in three IT environments are vulnerable to a cyber threat known as Ripple20. This is according to a new report from ExtraHop, a cloud-native network detection and response solutions provider. More
Story image
McAfee finds vulnerabilities in 'temi' the videoconferencing robot
Temi is commonly used in environments including businesses, healthcare, retail, hospitality, and other environments including the home.More
Story image
OT networks warned of vulnerabilities in CodeMeter software
Manufacturers using the Wibu-Systems CodeMeter third-party licence management solution are being urged to remain vigilant and to urgently update the solution to CodeMeter version 7.10.More
Story image
AFP arrests two men with ties to Australian SMS phishing scheme
“The success of Operation Genmaicha has prevented further Australians from seeing their hard-earned savings siphoned off to criminal entities.”More
Link image
Webinar: Best practices for managing disparate security solutions
As budgets get more constrained, the emphasis shifts from merely finding threats to increased efficiency in managing security operations. Learn how to juggle a crowded field of solutions.More
Story image
Check Point acquires Odo Security to bolster remote security offering
The deal will integrate Odo’s remote access software with Check Point’s Inifinity architecture, bolstering the latter company’s remote security capabilities in a time where working and learning from home has become the norm, and looks to largely remain that way in the near future.More