Sophos’s spamtraps are intercepting a new Trojan horse being widely distributed via email, using the disguise of photos from someone who claims to be an admirer.
The malicious emails have the following characteristics:
Subject: Hello Darling
Message body: Hi, how are you? My photos Which I promised in attached file
Attached file: photo.zip
Make sure you don’t make the mistake of opening the attached file, however, as it contains the Troj/Agent-LQH Trojan horse. Users of Sophos’s gateway products will also have been stopping the malicious campaign as spam.
There may be many people who get quite a kick of being sent photos out-of-the-blue from someone they’ve never heard of before (especially if they call you “Darling”), but this is just the latest social engineering trick being used by the bad guys to trick you…
Read more in my article on the Naked Security website.
Found this article interesting? Follow Graham Cluley on Twitter or Mastodon to read more of the exclusive content we post.