Virus Alert: UPS/FEDEX Trojan
This entry was posted on 9/12/2008 3:33 PM and is filed under Security Info,Virus and Spyware,High Priority.
The UPS/FEDEX virus has been out since at least early July, but in the
past few weeks I have seen a massive upswing in activity, and have had
a few clients become infected. It is very difficult to remove, but easy
to identify and avoid if you know what to look for.
It is spread
via email purporting to come from UPS or FEDEX with a subject line of "Problem
with a package delivery." The email typically says that UPS or FEDEX
were unable to deliver a package you sent because of an invalid
address, and requests that you open/print the attached invoice and
bring it to the office to retrieve the package. The attachment has a Microsoft Word icon, but if you look at the file extension, it
isn't .doc but instead an executable (.exe).
UPS has issued a warning about this virus (
here),
but the long and short of it is, while UPS might send an email to
update you on the status of a delivery, and they might on rare
occasions include an attachment, they would never send you an
executable. The bottom line is, if you aren't completely sure, call UPS
and verify instead of opening the attachment.
The good news
is, if you have up-to-date anti-virus, it should detect this virus and
prevent it from being installed on your computer. Most of my existing
clients use Trend Micro, and you can see an example of an email "cleaned" by Trend Micro below. I have seen hundreds of these at some client sites in the
past week, so it pays to be aware.
Listen to this story here:
Download | Duration: 00:01:45
NCTCS 
