This particular variant of the email targets the company's UK customers, but identical emails with only the sender's email address and the fake mobile phone number changed in order to trick German users were spotted as well.
The email instructs recipients to save the attached file (Vodafone_MMS.zip) in order to save the sent picture.
The archive file contains an executable posing as an image file - Vodafone_MMS.jpg.exe, and H Security rightly points out that users who chose not to have file extensions shown on their computers are in danger of falling for the trick and opening the file.
If they do, they will be saddled with a variant of the Andromeda downloader Trojan, and their computers will be open to further infection.
As always, users are advised never to download and open attachments from unsolicited emails.
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.