Latest security update.
We are seeing an increase in the following attacks today.
An email saying Your Amazon.co.uk order has dispatched (#203-2083868-0173124) pretending to come from Amazon.co.uk <email@example.com> with a subject of Your Amazon.co.uk order has dispatched (#203-2083868-0173124) is another one from the current bot runs which try to download various Zbots, cryptolocker, ransomware and loads of other malware on your computer. They are using email addresses and subjects that will entice a user to read the email and open the attachment. A very high proportion are being targeted at small and medium size businesses, with the hope of getting a better response than they do from consumers.
The first clue to watch out for is the attachment, Amazon do not send attachments in emails!
Almost all of these also have a password stealing component, with the aim of stealing your bank, PayPal or other financial details along with your email or FTP ( web space) log in credentials. Many of them are also designed to specifically steal your Facebook and other social network log in details.
All the alleged senders, companies, names of employees and phone numbers mentioned in the emails are all innocent and are just picked at random. Some of these companies will exist and some won’t.
DO NOT try to respond by phone or email, all you will do is end up with an innocent person or company who have had their details spoofed and picked at random from a long list that the bad guys have previously found. The bad guys choose companies, Government departments and organisations with subjects that are designed to entice you or alarm you into blindly opening the attachment or clicking the link in the email to see what is happening.
This email is very plausable on its basic look and feel. It appears to be a genuine word doc attached which is malformed and contains a macro script virus. Modern versions of Microsoft office, that is Office 2010 and 2013 and Office 365 have Macros disabled by default, UNLESS you or your company have enabled them. If macros are enabled then opening this malicious word document will infect you, and simply previewing it in windows explorer or your email client might well be enough to infect you. Definitely DO NOT follow the advice they give to enable macros to see the content.
Amazon do not include attachments in emails and definitely do not send word docs with the order confirmation or details. However a new user or somebody not looking properly could easily be fooled by this one and get badly infected. There are lots of formatting, spelling and grammar mistakes in the email, but lets be honest, Do you every read an email properly of this sort or do you just skim it? Most of us just skim through and pick out the important points and don’t look for the tell tale clues that it is a scam or a phishing attempt or a malware download. Users just tend to assume that somebody had a bad day and made a few typing errors.
Please call us if your worried about receiving these emails 01642 786922.