We received an email Monday that looked like it was from Intuit, and was about making sure that our QuickBooks account had the correct FEID (Federal Tax ID) number. Clicking on the link would have downloaded a Backdoor Trojan Horse program from a Turkish web server.
We recommend that you DO NOT CLICK ON THE LINK. If fact, any time you get an email from a service provider with a link, just skip the link and type the web address directly into the address box on your favorite web browser (IE, Firefox, Chrome). I have seen so many of these bogus but realistic looking emails that I never trust the link in an email without checking it out first, or just logging into my account directly.
The true destination address of links in emails can be revealed by RIGHT CLICKING on the link and selecting Properties from the context menu. Make sure the address matching what you expect, and when in doubt just good to the web site without clicking on the link.
For more information on this, check out the article on Sophos web site.Share