Royal Mail Trojan Email

[Remmy]

Hi guys, earlier today I received a suspicious looking email from 'Royal Mail Notification' (noreply@royalmail.com), which looked like this

It seemed very odd when they seemingly had no details about me (name etc.), and it seemed like it had been written by a child "Royal Mail has detained your package for some reason", and most of all they supposedly attach a form to fill out, but it's a .zip file containing a .exe file.

I looked it up, and found out that it's a known Trojan, so I thought I should bring it to people's attention because I know a lot of people will be sending and receiving mail at this time of year, and the fraudsters will try capitalise on that. Talk about festive spirit.

 

[SeekaX]

Hi guys, earlier today I received a suspicious looking email from 'Royal Mail Notification' (noreply@royalmail.com), which looked like this

It seemed very odd when they seemingly had no details about me (name etc.), and it seemed like it had been written by a child "Royal Mail has detained your package for some reason", and most of all they supposedly attach a form to fill out, but it's a .zip file containing a .exe file.

I looked it up, and found out that it's a known Trojan, so I thought I should bring it to people's attention because I know a lot of people will be sending and receiving mail at this time of year, and the fraudsters will try capitalise on that. Talk about festive spirit.

if i'll ever see anyone on here opening a .exe file attached to an email i'll give them the retard award personally. i'll even deliver it to their doorstep.
i feel like i might regret saying that.

 

[SuB]

lol i got this today actually, tbh any email that has "somthing in a zip file" just gets deleted unless I know the sender, and have spoken to them "live" about sending a zip file..

 

[Remmy]

I just thought it was best to be safe in case people just weren't thinking, you know

 

[SuB]

aye no harm in telling people is there.

 

[hmmblah]

Literally hundreds of these hit my mail server daily. Thankfully the content filter dumps them and my users never see them. I do get an occasional call from a user asking if they should send their credentials to the email from the "sysadmin" that they received earlier. :banghead: At least they ask I guess...

 

[kenny01924]

yes I had the same message last week never opened it up look odd so deleted

 

[Mathius]

I've not had any from royal mail but I get loads of these kind of mails, a lot usually go straight to the junk folder and the rest go into my inbox, and when I view the email addresses, the To: and From: addresses are blank......

I think though to most computer/internet savvy people it's common knowledge to never open attachments from anyone without a) knowing that they are coming and b) having your antivirus uptodate and checking emails in the background........

there's always one though, so +1 for a heads up.

 

[d3rrial]

Its quite likely that this is the infamous CryptoLocker You better stay away from opening it, or say goodbye to your files, unless you pay 0.5 Bitcoins to the creators of the malware

 

[mArTyN]

Thank's Remmy

 

[Netroxen]

Cheers for the heads up.
I received an Email the other day from a phishing PayPal account, it said my account had been suspended due to something or other.
I was silly enough to click on the link and login; make sure you check the URL when you receive these kind of Emails!

Also, careful with Emails that incorporate the '@' symbol in front of an official name.
@Paypal = Bad
Paypal Inc. - Good
If you get my drift...

 

[Snortan]

Even if the name is the same, letter for letter, e-mail addresses can be spoofed so beware of that.

 

[Remmy]

Cheers for the heads up.
I received an Email the other day from a phishing PayPal account, it said my account had been suspended due to something or other.
I was silly enough to click on the link and login; make sure you check the URL when you receive these kind of Emails!

Also, careful with Emails that incorporate the '@' symbol in front of an official name.
@Paypal = Bad
Paypal Inc. - Good
If you get my drift...

So did you realise quickly enough to change your password?

Even if the name is the same, letter for letter, e-mail addresses can be spoofed so beware of that.

Oh wow, I didn't know that, how does that work?

 

[Gamepro105]

You can write php code to make it look like its from that sender people may fall for this :L i got one from DPD with a zip file

 

[hmmblah]

Never click a link in an email, even if you think it's legit. If you think it's from paypal, open a browser yourself and go to paypal. If you get a shipping tracking email from Royal Mail, FedEx, etc, open up their websites manually and copy/paste the tracking number.

 

[Remmy]

Yeah I suppose it always pays to be safe. You may think you're fine until one day you get bitten in the ass, and then you'll wish you'd thought about it more.

 

[Snortan]

Oh wow, I didn't know that, how does that work?

Haven't read that much into it, just remember reading about it.

 

[Jordan]

Thanks for the heads up

 

[Josh Weston]

It's stuff like this that makes me glad I convinced my grandfather to get a Mac. Far less chance of something like this effecting him.

 

[Wraith]

Thanks man for the warning will forward this info on, I don't worry about this type of scam mail as my mail server blocks .zip .exe .bat .com & .msi ect type files. I think gmail have started doing this too.