Friday, 8 May 2015

Virus Emails Scanned Tickets scan0079.xls from Rebecca De Mulder

Email from Rebecca De Mulder
milestoneholdings@yahoo.co.uk
with file scan0079.xls attached

Appears to be a macro virus inside the Excel document so don't open it!
 
Email text is as below:
 
Afternoon

 

Attached are the tickets  you have requested

  

Kinds Regards kath

 

Milestone Holdings

 

Tel:   01676 541133

Mob: 07976 440015

Wednesday, 6 May 2015

Email from Transport for London Virus / Malware


 There are many emails being sent today with this subject Email from Transport for London supposedly sent from email address noresponse@cclondon.com
 
These emails contain a Word document AP0210780545.doc that requires macros to be enabled to open it. DO NOT OPEN! This file contains a virus and will infect your PC, as of now (6 May 2015) it is not detected by the majority of Antivirus vendors.
 
 This virus appears to be ransomware and renames and encrypts files on your PC or network drives to demand money for the encryption key.
 
 It may well be a file called wiley5.exe that is the payload but this isn't yet confirmed.

Dear Customer,

 

Please open the attached file to view correspondence from Transport for London.

 

If the attachment is in DOC format you may need Microsoft Word to read or download this attachment.

 

 

Thank you for contacting Transport for London.

 

 

 

Business Operations

Customer Service Representative