You have NOT received an eCard

Graham Cluley

In the last few months we have been seeing a rise in the proportion of emails containing malicious attachments. This is something of a throwback to the old days, when worms and Trojan horses were regularly being spread via email rather than being found on compromised websites.

One psychological trick up the hackers’ sleeves that doesn’t seem to have gone out of favour, is to disguise the malware as a electronic greeting card or eCard.

At the moment we’re seeing a lot of spammed-out malicious messages with the subject line “You have received an eCard” pretending to come from legitimate online greeting company

Attached to the emails is an archived file,, which contains a malicious Trojan horse that downloads further malware from the internet – including scareware designed to fool you into purchasing a bogus security product.

Sophos detects the Trojan horse as…

Read more in my article on the Naked Security website.

Found this article interesting? Follow Graham Cluley on Twitter to read more of the exclusive content we post.

Graham Cluley is a veteran of the anti-virus industry having worked for a number of security companies since the early 1990s when he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows. Now an independent security analyst, he regularly makes media appearances and is an international public speaker on the topic of computer security, hackers, and online privacy. Follow him on Twitter at @gcluley, or drop him an email.