Emails containing fake invoices from Zalando and Deutsche Bahn distribute malware

We wrote before about the smart methods of fooling users to do things (execute files) which they would not normally do. Two weeks ago we’ve seen a mass mailing in the German language containing malicious payload pretending to be invoices from Apple and Plus.de.

Cybercriminals are sending again personalized emails in the German language pretending to come from the well-known website Zalando.de (shoes and women accessories) and from the Deutsche Bahn (German Railways).

My company offers consulting on how to prepare for TISAX, ISO27001, NIS2, CSMS and SOC2 audits.
Get in touch with us here: https://www.endpoint-cybersecurity.com/contact/

zalando   Bahn Malware

Same as before, the text is addressed to the recipient of the email directly and it threatens him so that the user opens the ZIP archive and executes the malicious file.

All payloads are detected by Avira software as TR/Jorik.Androm.pqr and HIDDENEXT/Worm.Gen.

 

Sorin Mustaca

IT Security Expert

via Avira – TechBlog http://techblog.avira.com/2013/05/16/emails-containing-fake-invoices-from-zalando-and-deutsche-bahn-distribute-malware/en/


© Copyright 2013 Sorin Mustaca, All rights Reserved. Written For: Sorin Mustaca - Security & Technology


Want to work with me on this topic?
Check Endpoint Cybersecurity to see the consulting services we offer.

Related Posts

How to make a mediacenter PC and record video from TV

It all started when a friend told me that he is building a router with a all-in-one motherboard with an Atom processor inside. I always wanted to build a computer in order to solve these problems: My company offers consulting on how to prepare for TISAX, ISO27001, NIS2, CSMS and SOC2 audits. Get in touch […]

Older articles on Virus Bulletin’s website

The links below are located on this site section : http://www.virusbtn.com/resources/phishing/index As can be seen, until the moment of writing this post, I am the only author. Click on the links below to be redirected on the Virus Bulletin’s website. You need to register to read the articles. Don’t worry, is free of charge. My […]

Avira Techblog is online

At the beginning of this year Avira opened to the public the Technical blog: http://techblog.avira.com We publish there news which are too technical to be displayed on the www.avira.com page. I publish quite a lot things about Spam and Phishing. Have a look at it: http://techblog.avira.com There is also RSS Feed support: http://techblog.avira.com/feed/en/ My company […]

One thought on “Emails containing fake invoices from Zalando and Deutsche Bahn distribute malware

  1. Pingback: Emails containing fake invoices from Zalando and Deutsche Bahn distribute malware | Sorin Mustaca's IT Security News aggregated

Comments are closed.