Sophos has been intercepting many spam emails containing a malicious attachment overnight.
The emails all claim that “your internet access is going to get suspended”, as the recipient has committed “illegal activities” such as pirating software, movies or music.
The emails, which say they come from the “ICS Monitoring Team”, claim that a report of the user’s activities in the past six months is attached in a file called user-EA49943X-activities.zip.
However, if you open the contents of the user-EA49943X-activities.zip file you risk being infected by a malicious Trojan horse designed to communicate with remote hackers. Criminals can then break into your computer and use it for their own money-making purposes.
Sophos is identifying the malicious files seen being used in the campaign so far as Troj/Meredrop-A and…
Read more in my article on the Naked Security website.