Has the Hello Darling Trojan arrived in your email yet?

Graham cluley
Graham Cluley
@[email protected]

Sophos’s spamtraps are intercepting a new Trojan horse being widely distributed via email, using the disguise of photos from someone who claims to be an admirer.

The malicious emails have the following characteristics:

Subject: Hello Darling

Message body: Hi, how are you? My photos Which I promised in attached file

Attached file: photo.zip

Make sure you don’t make the mistake of opening the attached file, however, as it contains the Troj/Agent-LQH Trojan horse. Users of Sophos’s gateway products will also have been stopping the malicious campaign as spam.

There may be many people who get quite a kick of being sent photos out-of-the-blue from someone they’ve never heard of before (especially if they call you “Darling”), but this is just the latest social engineering trick being used by the bad guys to trick you…

Read more in my article on the Naked Security website.

Found this article interesting? Follow Graham Cluley on Twitter or Mastodon to read more of the exclusive content we post.

Graham Cluley is a veteran of the anti-virus industry having worked for a number of security companies since the early 1990s when he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows. Now an independent security analyst, he regularly makes media appearances and is an international public speaker on the topic of computer security, hackers, and online privacy. Follow him on Twitter at @gcluley, on Mastodon at @[email protected], or drop him an email.