Browse archive

Latest news

Experts highlight top data breach vulnerabilities

NYPD detective accused of hiring email hackers

Guantanamo cuts off Wi-Fi access due to OpGTMO

Why BYOx is the next big concern of CISOs

Free tool repairs critical Windows configuration vulnerabilities

IT pros focus on cloud security, not hype

Blue Coat to acquire Solera Networks

APT1 is back, attacks many of the initial U.S. corporate targets

Aurora attackers were looking for Google's surveillance database

U.S. DOJ accuses journalist of espionage

A closer look at Mega cloud storage

Find TrueCrypt and BitLocker encrypted containers and images

The CSO perspective on healthcare security and compliance

Hacking charge stations for electric cars

Fake PayPal payment notifications carry malware

Posted on 30.08.2012

Millions of fake emails purportedly sent by PayPal have been hitting inboxes in the last few days, Webroot warns.

The emails take the form of a notification about a received payment in the amount of $208, but does not say what the payment is for:

Counting on the fact that the recipients will be curious about a payment that they weren't expecting, the spammers offered an attachment that supposedly contains details about it.

Unfortunately, the attached file is a backdoor Trojan, and the only positive thing about it is that it is currently detected by the majority of the most popular AV solutions out there.

Users are always advised to ignore unsolicited emails carrying attachments and embedded links.

In this case, if the curiosity is too much to handle, a visit to your PayPal account the regular way - by entering the URL in the browser yourself or using a bookmark you have created - can help you and keep you safe.