Cybercriminals have spammed out malware, posing as an email from the Royal Mail.
The emails, which claim that a package has been returned to the Royal Mail office, pretend to come from official-sounding addresses such as email@example.com or firstname.lastname@example.org.
Opening the attached file could lead to your Windows computer being infected by a Trojan horse.
Here’s a typical example of what is being spammed out:
A courier did not deliver the package to your address.
Reason: The package is too large
Information about your package is attached to the letter.
Read all information carefully and come to the “Royal Mail” office to receive your package.
Thank you for your attention.
Royal Mail Service.
The reason given for non-delivery of the parcel can vary. For instance, the email might claim that your address does not exist, or that the parcel is too large…
Read more in my article on the Naked Security website.
Found this article interesting? Follow Graham Cluley on Twitter to read more of the exclusive content we post.