Tag Archives: X.Trojan.Win32

Greetings! – Another Email Banking Scam

There is a good chance that this morning you received an email that stated in part, “Greetings! Yesterday I received a message from your bank with your account statement”.

Now after your heart started beating again, how long did it take you to realize that this email was just one more, in a long line of such emails you are forced to deal with on a regular basis.

Scam emails like this may have several purposes; they can be crafted to trick you into revealing financial information that can be used to steal your money, or they can be designed to install various types of malware on your computer.

“Greetings!

Yesterday I received a message from your bank with your account statement.

I don’t need problems with the police because of your bank’s error!!!

Please contact your bank and ask them to not mistakenly send me your personal data to me.

For the proof of my non-participation in obtaining your personal data, I am attaching the copy of the message containing your account statement which I had received via e-mail!!!!

You must print the copy of the message and pass it on to the bank, so that they wouldn’t mistakenly send me your personal bank account data.

Message contains attachments

BANK_DETAILS.zip (52KB)”

This particular email contains the Banker Trojan, X.Trojan.Win32 as part of the attachment, which according to the ThreatExpert website, contains characteristics of an identified security risk which can:

Communicate with a remote SMTP server and send out email.

Download/request other files from Internet

Modify system settings that may have negative impact on overall system security

Create a startup registry entry

Contains characteristics of an identified security risk

Now while you may be aware of this type of Internet scam, I can assure you that a sufficiently large number of people are not. Scams such as this rely on the principal, that exposing a large number of people to this type of scam email, will always deceive at least some of those people.

Although it may be true that the Internet has the potential for safe, and secure, financial transactions, safe banking online relies on you making good choices and decisions that will help you avoid costly surprises, or carefully crafted scams and phishing schemes such as the one just described.

Despite all the publicity concerning inpenetrateable system security, we have learned, much to our detriment, that no such inpenetrateable systems exist. The inescapable fact remains; you are your own best protection while conducting financial transactions on the Internet.

The type of attack described above, is occurring with such frequency that the IC³ (the Internet Crime Complaint Center, a partnership between the Federal Bureau of Investigation (FBI), the National White Collar Crime Center (NW3C), and the Bureau of Justice Assistance), has called the situation “alarming”, so you need to be extremely vigilant.

Be kind to your friends, relatives, and associates, and let them know that these types of scams are now epidemic on the Internet. In that way, it raises the level of protection for all of us.

Minimum safety precautions you should take:

Consider every email, telephone call, or text message requesting confirmation of your personal and financial information as a scam.

When contacting your bank; use a telephone number from your statement, a telephone book, or another independent source.

Don’t open emails that come from untrusted sources.

Don’t run files that you receive via email without making sure of their origin.

Don’t click links in emails. If they come from a known source, type them on the browser’s address bar. If they come from an untrusted source, simply ignore them, as they could take you to a web designed to download malware onto your computer.

Never click on embedded cell phone links.

Keep your computer protected. Install a security solution and keep it up-to-date.

Don’t use:

A password you use for any other service.

Your name or a close relative’s name.

Your birth date, telephone number or address, or those of a close relative.

Your bank account number or bank card number.

Do not share your personal verification question answers with anyone, and do not disclose them in any emails. It’s simple; giving your password answers to another person, or company, places your finances and privacy at risk.

Discover one way these cyber-crooks obtain your email address in the first place. Read SEND THIS E-MAIL TO EVERYONE YOU KNOW! by TechPaul.

Elsewhere on this site there are additional articles dealing with other current email and financial scams.

See: Bank of America Alert – Update Your Account Scam!

See: Online Banking – Be Safe, Not Sorry!

See: Avoid Trojans/Viruses – Stop with the Crazy Clicks Already!

5 Comments

Filed under Email, Interconnectivity, Internet Safety, internet scams, Malware Advisories, Online Banking, Online Safety, Phishing, Safe Surfing, Spyware - Adware Protection, trojans, Viruses, Windows Tips and Tools