Better Business Bureau spam contains malware

Spammers are using the name of the Better Business Bureau to propagate malware, according to security company Sophos Ltd

Sophos discovered that emails labeled as coming from the BBB and purporting to contain information about a customer complaint have been actually carry malware.

Sophos said businesses should be wary of such emails because the BBB does not typically send out such emails concerning customer complaints. These messages “have been spammed out widely across the internet by cybercriminals hoping that you will be tricked into opening the malicious attachment,” Sophos said.
The spam letter reads:

Dear!
Here with the better Business Bureau notifies you that we have received a complaint (ID [random number]) from one of your customers with respect to their dealership with you.
Please open the attached Compliant Report below to obtain more information on this matter and let us know of you point of view as soon as possible.
We are looking forward to your prompt reply.
Regards,
Better Business Bureau

Sophos identified  the malicious code contained within the attached file as Troj/Bredo-RK.

Faked Better Business Bureau email

“Unfortunately, you’ll not be winning an award for good customer service by responding to the complaint – instead you’ll be unwittingly infecting your Windows computer with malware,” according to Sophos.

Would you recommend this article?

Share

Thanks for taking the time to let us know what you think of this article!
We'd love to hear your opinion about this or any other story you read in our publication. Click this link to send me a note →

Jim Love, Chief Content Officer, IT World Canada

Related Tech News

Get ITBusiness Delivered

Our experienced team of journalists brings you engaging content targeted to IT professionals and line-of-business executives delivered directly to your inbox.