Cybercriminals are up to their old tricks again, disguising their Trojan horses by spamming them out attached to emails claiming to come from legitimate organizations.
Today one of the malware campaigns we are seeing pose as communications from WorldPay, claiming that your credit card has been charged on behalf of Amazon.
The emails have the subject line “WorldPay CARD transaction Confirmation”, and part of the email message reads:
Your transaction has been processed by WorldPay, on behalf of Amazon Inc. The invoice file is attached to this message. This is not a tax receipt. We processed your payment. Amazon Inc has received your order, and will inform you about delivery.
Of course, if you haven’t bought anything on Amazon lately you might be all too tempted to click on the attached file (named WorldPay_CONFR.zip).
Which would be a mistake, of course, because it contains a copy of the…
Read more in my article on the Naked Security website.
Found this article interesting? Follow Graham Cluley on Twitter or Mastodon to read more of the exclusive content we post.
