The National Fraud Intelligence Bureau (NFIB) is warning financial institutions of a recent surge in spam emails containing Zeus malware.
The spam e-mails have malicious attachments and are distributing a variant of the Zeus computer virus. Zeus is a Trojan horse that steals banking information and targets Microsoft Windows machines.
The emails have the following subject lines/content:
- "Please DocuSign this document: Company Changes - b Internal Only" - Purports to deliver a file regarding company confidential information.
- "Voice Message from Unknown" followed by phone number - Indicates that the recipient has received a voicemail from an unknown caller.
- New Complaint; "Scan from a Xerox WorkCentre"; "USPS - Missed Package Delivery" - All refer to the attached file as an item of information pertaining to the recipient.
- "Payment Overdue - Please respond" - Instructs recipient to review attached document and remit payment for an overdue invoice.
If you receive an e-mail with any of the subject lines as shown above – delete it immediately and do not download or view the attachments. The IT department should be made aware if any employees receive one of these emails.
To report a fraud and receive a police crime reference number, call Action Fraud on 0300 123 2040 or use our online fraud reporting tool.