UPS Delivery Notification Email = Trojan

by Administrator on January 14, 2010

I received several copies this morning (in different email accounts) of an email that claimed to be from the United Parcel Service (UPS). Here’s the text of one of them (The “From” name and “Subject” varies, but contains “UPS Tracking Number”):

Dear customer!

The courier company was not able to deliver your parcel by your address.
Cause: Error in shipping address.

You may pickup the parcel at our post office personaly!

Please attention!
The shipping label is attached to this e-mail.
Please print this label to get this package at our post office.

Please do not reply to this e-mail, it is an unmonitored mailbox.

Thank you.
United Parcel Service of America.

My first hint that something was amiss was because I live in Germany, so “United Parcel Service of America” wouldn’t be delivering to my home…

To make a long story short, don’t open that shipping label. If you do, you will have infected your computer with Trojan.Win32.Bredolab.Gen.1(v) (as identified by Sunbelt Software’s VIPRE).

If you did open it, you can get a fully functional 30 day free trial of Sunbelt Software’s VIPRE Anti-Virus and Anti-Spyware software by clicking here (you can also get a copy if you aren’t infected… :) You should have both anti-virus and anti-spyware software on your computer, and if you don’t, VIPRE is an effective yet economical solution — and comes with full support from Sunbelt). While I didn’t purposely infect my computer to test this, I’m pretty sure that VIPRE will be able to at least quarantine the infection (just be sure to update the definitions and run a full system scan, and let the scan complete itself. You might be surprised at what it finds — and neutralizes).

You do have to give Sunbelt Software a good email address in order to get your license key, but from past experience with Sunbelt, I can vouch for the fact that they won’t spam you or flood your Inbox with unwanted emails. After all, they are an award winning security company and take pride in their reputation… they aren’t about to ruin it by sending you a bunch of junk emails (but do expect a “reminder” when your 30 day trial is about to expire, along with an offer to purchase a one year license — which is very economically priced. They even offer a license that will cover all the computers in your house, which is the license that I purchased and use. And unlike other companies, there’s no “automatic renewal” or “forced continuity” — you have to specifically go back to them every year and renew your license. That’s a good thing!).

Stay safe out there…

P.S. — Just for fun, let’s look at a few more indicators that this is an email you don’t want to respond to:

  • UPS doesn’t notify customers by email (as far as I know).
  • UPS is not the Post Office!
  • “deliver your parcel by your address” — bad grammar (how about, “deliver your parcel to your address”?).
  • “Personaly” is spelled wrong.
  • “Please attention!” — This is not a phrase that is used in normal U.S. English; however, it is a phrase that I might expect to hear from somebody whose native tongue is not English (and UPS would most likely use native English speakers for their correspondence within the U.S.).

Hope this helps you better identify spam!

NOTE: This posts contains one or more affiliate links. If you click on the link(s) and purchase something, I will receive a referral commission. It will not have any effect on the purchase price of the product. As a general rule, I do not accept free products for review and my decision to promote these products is based on my own satisfaction with the products after purchasing them and my desire to tell you about high quality products while generating revenue for my business. Any exceptions will be clearly noted. Thanks!

{ 0 comments }

Don\’t Leave Your Mail In Your Car

by BlogByEmail on December 4, 2009

I just came across this article about not leaving mail in your car. Your mail contains all sorts of personal information that is of value to a thief. And if a thief has a copy of your bank statement and your home address, the balance just might convince them that a home invasion could be a profitable undertaking.

Do be careful.

As the PGP article also points out, you need to get a good cross-cut shredder and use it to shred “anything and everything” that you don’t need. You should also use a locking mailbox. While driving to the post office to pick up your mail can be a bit of an inconvenience, you can usually find one close to where you work or shop and the cost is minimal (and if you can find one within walking distance of your home, walking to the Post Office to check your mail would be an easy way to add some exercise to your daily routine). Consider it “cheap insurance”.

Now if you’ll excuse me, I need to go to my car… :)

{ 0 comments }

A Neat Way To Hide Your Email Address On Web Sites

September 4, 2009

I’ve been looking for a good tool that will obfuscate (or hide) my email address on websites. I wanted something that is easy for a legitimate visitor to see, yet would be impossible for those ‘bots that scrape the Internet, looking for email addresses on web pages that they can send their worthless spam to.
I [...]

Read the full article →

How Google Protects Your Gmail Account

August 18, 2009

I locked myself out of my Gmail account a few days ago and needed to have the password reset. That’s when I found out that Google has implemented a system that can prevent somebody who knows the answers to your security question from hijacking / stealing your account.
Google now sends an email to the secondary [...]

Read the full article →

How To Reduce The Amount Of Spam In Your Inbox

August 18, 2009

Got spam? We all do, to one extent or the other. And because of that, there are a lot of products that can help you better manage the spam that hits your Inbox.
Would you like to know how to get and use one of the best anti-spam devices available? Would you want to know even [...]

Read the full article →

A Resource To Help Identify Fake Security Products

June 24, 2009

Thanks to the good people at Sunbelt Software (makers of VIPRE Anti-Virus and Anti-Spyware, all of us now have a great resource that can help us identify if a program we stumble across on the Internet is a legitimate security product.
To get started, head over to their Rogue Anti Sypware blog and type the name [...]

Read the full article →

Elcomsoft, Adobe, and Strong Passwords

May 3, 2009

I couldn’t have said it better myself (although I’ve been saying it for a long time): Use strong passwords:

At least 12 characters.
At least one upper case letter.
At least one lower case letter.
At least one number.
At least one special character (those things above the numbers on your keyboard, etc.).
Never use a word from a dictionary, regardless [...]

Read the full article →

How To Keep Malware Off Your Computer

April 28, 2009

I’ve been using my current laptop for about three years now. I gave my old laptop to my wife when I got my current one. She doesn’t do much except for shopping and writing emails to a few friends.
I had installed some applications on that laptop before I passed it off to her and she [...]

Read the full article →

An Easy Conficker Test

April 3, 2009

Got Conficker? I certainly hope not!
Conficker is a form of malware that allows some unknown entity to take over your computer and do things that you’d rather not have done. It was first released last November (after the details of a Microsoft Windows vulnerability were made available). Since this threat is easily removed by applying [...]

Read the full article →

VIPRE AntiVirus Software

January 18, 2009

I am in Orlando this weekend, speaking at the Earn 1k A Day Summit on computer security. one of the other members attending the event asked me about antivirus and firewall software.
I tested Sunbelt Software’s VIPRE AntiVirus a couple of months ago (I don’t regularly use antivirus software; I rely on other “experts only” methods [...]

Read the full article →

← Previous Entries