Citi Group customers targeted with malware-laden alerts
Posted on 12.02.2013
A malware-spreading spam campaign targeting Citi Group customers is underway, so if you are one, be on the lookout for an email alerting you to the receipt of a "secure message" (click on the screenshot to enlarge it):



"The emails include a link and an attachment. While the link is harmless, taking receivers to the legitimate Citi page, the attachment is a password stealer that opens a backdoor for remote attackers. Some instances appear to also download components of the BlackHole or ZeuS exploit kits," explains Bitdefender's Loredana Botezatu.

The email is a pretty good fake - good English and grammar - and it tries to reassure users by offering a phone number (more than likely manned by the scammers) for checking its validity.

According to Bitdefender, this particular spam campaign is conducted by the same group of scammers that was behind the recent Better Business Bureau and DocuSign-themed campaigns.









Spotlight

Windows 0-day exploited in ongoing attacks, temporary workarounds offered

Posted on 22 October 2014.  |  A new Windows zero-day vulnerability is being actively exploited in the wild and is primarily a risk to users on servers and workstations that open documents with embedded OLE objects.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Thu, Oct 23rd
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //