Nastygram: Spoofed FDIC bank fail e-mail
Spam e-mails mimicking the Federal Deposit Insurance Corp. and warning of additional bank failures are instead the latest bid by cyber crooks to empty your bank account, security experts warn.
The messages arrive with subjects such as "FDIC has officially named your bank a failed bank," and "Check your Bank Deposit Insurance Coverage." The missives warn: "You have received this message because you are a holder of a FDIC-insured bank account. Recently FDIC has officially named the bank you have opened your account with as a failed bank, thus, taking control of its assets."
Recipients are instructed to click a link that opens one of dozens of Web sites with names crafted to look like fdic.gov. The links lead to a counterfeit FDIC page that offers a copy of "your personal FDIC insurance file" to see whether your coverage has been impacted.
The files are offered as Adobe PDF or Microsoft Word documents, but downloading the files show them to be executable programs (.exe files). According to M86 Security Labs, the files will drop a copy of the Zeus/Zbot password-stealing Trojan on victim PCs.
In an alert posted Tuesday about this scam, the real FDIC is urging people not to access the bogus sites or download the files, saying it is "attempting to identify the source of the e-mails and disrupt the transmission." M86 Security Labs said the spam is being blasted out through the Pushdo botnet, a giant collection of hacked PCs that is often rented out to spam artists and scammers.
October 28, 2009; 11:40 AM ET
Categories: Fraud , Latest Warnings , Safety Tips | Tags: fdic, zeus
Save & Share: Previous: Former anti-virus researcher turns tables on industry
Next: DHS: PhoneSnoop app bugs BlackBerrys
Posted by: killspammerz | October 28, 2009 3:22 PM | Report abuse
Posted by: bentleychan | October 29, 2009 2:55 AM | Report abuse
Posted by: Smileyhari | October 29, 2009 3:18 AM | Report abuse
Posted by: hairguy01 | October 29, 2009 6:49 AM | Report abuse
Posted by: jim_maryland | October 29, 2009 12:24 PM | Report abuse
Posted by: beeker25 | October 29, 2009 1:09 PM | Report abuse
The comments to this entry are closed.