Symantec warns mail users of FedEx malware trick
Symantec Security Response has issued a warning that email users could be tricked to infect their computers with malware, disguised as a parcel notification from FedEx.
Symantec Security Response announced that it has observed that fake FedEx emails have been circulating to trick users to click on a link to print out a receipt in order to retrieve their parcel in person from the nearest FedEx office.
For unsuspecting users who click on the link, they will be greeted by a PostalReceipt.zip file containing malicious PostalReceipt.exe executable file. Instead of receiving a parcel, a malware Trojan.Smoaler is delivered to their computer.
All the fake FedEx emails delivering this malware are almost identical except for the order numbers and the website the zip file is hosted on, Symantec said. One sign of laziness or perhaps an oversight on the part of the malware author, is the use of the same Order Date. The author does change the domain where Trojan.Smoaler is hosted daily, Symantec explained.
FedEx has posted a warning on its website along with further information about online security.
Symantec recommends users of computers to keep their anti-virus up to date and avoid clicking on links in emails received from unknown senders.