Why should malware authors show any creative flair and imagination? There’s no need, after all, if tried and trusted methods of infecting computers still work.
Take, for instance, the widespread malware campaign that has been spammed out across the internet today, posing as an email from DHL.
A typical email has a subject line of “DHL Express Parcel Tracking notification [random code]” or “DHL Express Tracking Notification ID [random code]” or “DHL International Notification for shipment [random code]”
The emails read similar to the following:
DHL Express Tracking Notification: Mon, 11 Jun 2012 12:14:55 +0200
Custom Reference: 9057425-HRIEI2E4Q8C
Tracking Number: UT09-2041042911
Pickup Date: Mon, 11 Jun 2012 12:14:55 +0200
Pieces: 2< Mon, 11 Jun 2012 12:14:55 +0200 - Processing complete successfully PLEASE REFER TO ATTACHED FILE FOR DETAILED INFORMATION...
Read more in my article on the Naked Security website.
Found this article interesting? Follow Graham Cluley on Twitter or Mastodon to read more of the exclusive content we post.