More contract malware spammed out

Graham Cluley
Graham Cluley @

 @grahamcluley.com
 / grahamcluley

The start of a new week has brought some minor variations to the contract malware I warned you about on Friday.

The malicious messages that are being spammed out are pretending to be changes to a contract – some related to business activities with well known firms like Johnson & Johnson, Starbucks or Google, and others pretending to be connected with a retirement plan.

Here are a couple of examples:

retirement

johnson

The dangerous files attached to these emails in the samples we’re seeing in our traps are called contract.zip or New_Contract.zip. Sophos intercepts them as Troj/Invo-Zip.

Sign up to our free newsletter.
Security news, advice, and tips.

If you use other vendors’ products, make sure that they are properly updated and capable of stopping these threats.

Graham Cluley
Graham Cluley

Graham Cluley is an award-winning keynote speaker who has given presentations around the world about cybersecurity, hackers, and online privacy. A veteran of the computer security industry since the early 1990s, he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows, makes regular media appearances, and hosts the popular "Smashing Security" podcast. Follow him on LinkedIn, Bluesky and Mastodon, or drop him an email.

You may also like...

What do you think? Leave a comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.