Beware of Emails Impersonating FedEx Maligned with Malware

Softpedia.com reported on 12th December, 2013 stating that security experts are warning Internauts about any delivery by FedEx, global courier delivery service, by saying that they should watch out for fake emails sent by cybercriminals in an effort to distribute malware.

The scam emails with subject line 'Package for you' appear to come from FedEx UK.

The emails read tell the recipient that FedEx has a package for them. Disturbing, some crucial information is not available or missing for completing the delivery. Hence, it asks the recipient to follow the link to confirm his (recipient's) identity within 24 hours else, the parcel shall be returned to its sender.

But, the email hasn't been sent by FedEx and it's one of the many incarnations of the
bogus 'delayed package delivery' emails designed to dupe people to install malware on their machines.

Internauts who fall for the fake ruse and click on the link contained within the email shall be diverted to a fake website resembling a genuine web page of FedEx. As per security experts', once on the web pages users shall be asked to download and install includes a software dubbed 'FedEx Verification Manager'.

Once the instructions are followed it will not lead to installation of a verification manager on the computer but it will install a computer Trojan on victim's computer. Trojans of this kind can collect crucial details from the hijacked computer and send it to Internet criminals and it may also permit criminals to control the tainted computer.

Therefore, those affected by the malicious campaign are advised to regularly update their OS, software and AV software to minimize the chance of infection and to avoid clicking on links in unsolicited emails.

Finally, security experts highlight that FedEx has regularly been struck by similar malware spam email campaigns as have delivery services such as DHL, UPS and the Royal Mail. For example, emails pretending from "FedEx Online Billing" containing a new invoice that has to be checked and paid hit netizens in January 2013 but actually the emails contained a malicious link which infected machines of users with a Zeus/Zbot Trojan variant.

» SPAMfighter News - 12/21/2013