A new fake email claiming to be from BT is attempting to trick victims into automatically downloading Dridex banking malware.
- BT would never send you an email with an attachment.
- Dridex malware automatically downloads without a webpage being opened.
- This email comes after recent reports about a fake BT email that took advantage of the global WannaCry ransomware attack.
The emails entitled ‘New BT bill’ contain a link that automatically downloads a malicious file called ‘BT bill.zip’ once clicked. What makes this scam email unique is the Dridex malware starts downloading without a webpage being opened.
Once installed, the Dridex malware is designed to steal personal information such as usernames and passwords by eavesdropping, with the ultimate goal of getting into bank accounts and stealing cash.
If you receive one of these emails do not click on any links. Instead, go to the BT website directly and log in from there to view your bills. BT would never send you an email with an attachment.
Remember that fraudsters can “spoof” an email address to make it look like one used by someone you trust. If you are unsure, check the email header to identify the true source of any such attachment or link.
Additionally you should always update your Anti-Virus software and operating systems regularly.
Report fraud and cyber crime to us and receive a police crime reference number.