Thursday, 3 December 2015

ICM Industrial Cleaning Materials - Invoice #2393 Scam Email

ICM - Invoice #2393 is a Scam virus email. As usual just delete this email. The attachment contains a virus that will try to load Trojan program to steal your bank login data.

Dear Customer,
Please find invoice 2393 attached.
Kind Regards,
ICM

Industrial Cleaning Materials
Unit 19 Highlode Ind Est
Stocking Fen Road
Ramsey
Huntingdon
Cambridgeshire
PE26 2RB
Tel: 01487 800011
fax 01487 812075


ICM - Invoice #2393 Scam Email
ICM - Invoice #2393 Scam Email

Posted by at No comments:

Tuesday, 1 December 2015

Cryptowall 4 Infection Website Compromised from Nuclear Exploit Kit (HELP_YOUR_FILES.PNG)

Until last week it appeared that Cryptowall 4 infection was only being seen from emails carrying the payload. It now appears it is also being delivered by websites compromised by the Nuclear Exploit Kit. The Nuclear EK operates by exploiting vulnerabilities in Java, Acrobat Reader, Flash, and Silverlight so it's essential that you have your PC fully patched up to date.



Cryptowall 4 is now being found in the wild delivered by hacked websites. If you find your files on your drives are encrypted and the file names are also encrypted then it's highly likely that you have been infected by Cryptowall 4 ransomware. You can see the file HELP_YOUR_FILES.PNG will be stored in the folder with all the encrypted files. Other help files may be HELP_YOUR_FILES.HTML, HELP_YOUR_FILES.TXT.





Even visiting an apparently innocuous website may lead to your PC being infected IF you have software that has vulnerabilities such as Adobe Flash. Even fairly recent versions from August 2015 are still vulnerable to infection.



More info on the Nuclear Exploit kit for Cryptowall 4 here.
How to recover from Cryptowall 4



 http://www.bleepingcomputer.com/virus-removal/cryptowall-ransomware-information



To check a website you can use: http://www.isithacked.com

Posted by at No comments:

Thursday, 19 November 2015

Invoice and VAT Receipt EDMUN11118_181859 [Account:EDMUN11118]

Usual advice applies, just delete the email as it's a virus. The company listed as the sender will have no knowledge of the email as it's not come from them.


support@postcodeanywhere.com Invoice and VAT Receipt EDMUN11118_181859 [Account:EDMUN11118]
Thanks for your order!
Your payment was successfully processed and £120.00 was debited from your Visa card on 19 November 2015 (authorisation code: AUTH CODE:008018).. Thank you for your business, we appreciate it. Please find your VAT receipt attached for your records. Please retain this in case of any queries.


Your service is ready to use.
 
Account balance topped up: £100.00 credit added
divider

Posted by at No comments:

Your Google invoice is ready spam virus


Attached to this email, please find the following invoice:

Invoice number: 1630884720
Due date: 19-Nov-2015
Billing ID: 34979743806


Please follow instructions on the invoice for remitting payment. If you have questions, please contact collections-uk@google.com.

Yours Sincerely,
The Google Billing Team


--------------------------
Billing ID: 0349-7974-3806
Posted by at No comments:

noreply@cevalogistics.com Shipping notification SPam Email

The latest spam/virus is shown as coming from noreply@cevalogistics.com but this email address is faked. Subject line [Shipping notification] N4934524 (PB UK) and an Excel attachment Shipping-notification.xls

As usual don't open the file and just delete the email as it contains a virus.
Posted by at No comments:

Monday, 16 November 2015

Fake Email Toll IPEC invoice/statement (80458249)

Yet another email spam with faked sender. This is not a genuine email about tolls and should be deleted. It also contains a pXLS file attachment which appears to be a mistake or to trick virus scanners into allowing it through.


Toll IPEC invoice/statement (80458249)


Please find attached your current Toll IPEC invoice/statement..

Should you have a query with your account, please contact the telephone number detailed on your invoice/statement or email your enquiry to ipecar@tollgroup.com
Posted by at No comments:

DoT Payment Receipt XLS Email Spam

The latest email spam/virus has a subjedct line of "DoT Payment Receipt" with an attachment of PaymentReceipt.XLS. As with all of these types of email it isn't sent by the Dept of Transport, the email sender address has been faked to appear that it's sent by DoT to give authenticity to the email.


The attachment contains a virus/malware that will try to install a banking stealer trojan on your PC. DO NOT open the attachment and if you have we'd strongly recommend a complete virus scan repeated over a few days to ensure any new variants are detected.
Often these viruses are not detected on the first day that they are discovered.

  DoT Payment Receipt

 [Automated message. Do not reply] Thank you for your payment. It is important that you print this receipt and record the receipt number as proof of your payment.

You may be asked to provide your receipt details should you have an enquiry regarding this payment. DISCLAIMER This email and any attachments are confidential and may contain legally privileged and/or copyright material. You should not read, copy, use or disclose any of the information contained in this email without authorisation. If you have received it in error please contact us at once by return email and then delete both emails. There is no warranty that this email is error or virus free.
Posted by at No comments:
Subscribe to: Posts (Atom)