Another United Parcel Service (UPS) spam has been discovered and it carries the message “A new invoice is now available in the UPS Billing Centre. Please refer to attached file for more details”. The subject is: “Your UPS Invoice is Ready”.
The email comes with an attachment called “UPS-Billing-Invoice-Notification-809288436661915.zip”.
The email claims to be from the UPS Billing Center and states that the user can view, manage and pay his UPS invoices from a single online location.
The zip file contains the executable file “UPS-Bailling_Notification-Details.exe” which is a ‘Banking Trojan’ used to steal banking credentials from the victim (including confidential details such as username, password, credit card number etc.). By harvesting cookies and accessing other information the criminals can extract a lot of personal data which can be used to increase their chances to get access to the victims online banking accounts.
If you come across such emails do not open the attachment. Instead, delete the email and ensure that your antivirus is updated. Quick Heal detects the malicious attached file as TrojanPWS.Zbot.y so our users are already protected.
We recommend that other users do not open such attachments from any unknown emails.