Fake Payment Request Attack Ramps Up
By
Trojan-holding emails are far from new, but there is one style in particular that is more widespread than most, one to request a verification for payment to a major company, but instead carries a Trojan. Beware of any email that asks you to download a file you did not request yourself, that is allegedly from a company.
E-mail security company Cloudmark reports seeing more than 1.6 million of the attack e-mails, which bear a subject of “payment request from” followed by a company name such as eBay or J. P. Morgan Chase and Co. The body of the message says that to decline the payment, the recipient must download and install an attached “transaction inspector module.”
Comments are closed.