If you receive an email titled “Fwd: Daily Report” from a coworker this is a malware attack. Clicking on the attachment not only launches the Trojan horse downloader, which automatically calls out to a malicious server to download more malware, but it also emails a copy of itself to everyone in your address book. The details of the email are below:
Email subject: FW:Daily report
Attachment name: F44907162.zip
Body: Please review attached document.
Again, please teach yourself to avoid opening file attachments or clicking on links without verifying the source of the email, the destination of the link, and the contents of the attachment. Easiest way to verify the source is a quick reply to the sender asking them what they just sent. If they deny all knowledge, then the email is a fraud. Uploading the file attachment to or checking the link at VirusTotal.com will take care of the rest.
Sure, you’re in a hurry and who has time to do all this checking, anyway? The time spent being cautious is considerably less than the time you will be without your computer when IT comes to clean it up (again!)
For more information:
ShareJAN
About the Author:
I am a cybersecurity and IT instructor, cybersecurity analyst, pen-tester, trainer, and speaker. I am an owner of the WyzCo Group Inc. In addition to consulting on security products and services, I also conduct security audits, compliance audits, vulnerability assessments and penetration tests. I also teach Cybersecurity Awareness Training classes. I work as an information technology and cybersecurity instructor for several training and certification organizations. I have worked in corporate, military, government, and workforce development training environments I am a frequent speaker at professional conferences such as the Minnesota Bloggers Conference, Secure360 Security Conference in 2016, 2017, 2018, 2019, the (ISC)2 World Congress 2016, and the ISSA International Conference 2017, and many local community organizations, including Chambers of Commerce, SCORE, and several school districts. I have been blogging on cybersecurity since 2006 at http://wyzguyscybersecurity.com