Like everything else malware can be a hit or miss.

I was reading at MX Logic about another malware flood. This time it’s a fake email from FedEx. Here is the description from MX Logic.

The email alleges that you sent a package on July 25, but because the recipient’s address was not correct when it was shipped it had not been delivered. It then asks the user to print out a copy of the attached invoice (a .zip file which contains malware) and to collect a copy of the package at the FedEx Office (address of office not given, which should be one clear indicator that something is fishy about the email).

Sample subject lines that we have seen in our Threat Operations Center include:

You Have A Package!!!
Tracking N <fake tracking number>

If I was a malicious spammer I would pick something more universal like the Antivirus attack. Honestly how may people are going to go for this email from FedEx? It’s one thing to target a practice or program most people have. It’s another when your playing on a margin. Even if they are doing the same with UPS, DHL, et el. I think this one will go bust pretty quick. I can see maybe a company clerk going for this but really. Let me know if you see this email. I would also like to know if anyone almost went for it. Let me know in the comments what you think about “targeted” malware like this.

Related:

Bogus FedEx Notifications: New Malware Courier of Choice [TrendLabs]

Random Posts

• 10 things Gov. Sarah Palin has taught us about E-mail?
• Microsoft to share details on vulnerabilities
• Excellent Study “Cold Boot Attacks on Encryption Keys”
• What security programs would be on your dream Live-CD?
• Server migration almost complete.