amlydiate
asked on
Suspiciously legitimate spam containing virus zip files
Hi,
I have a client running a 2011SBS server for Exchange and File Sharing. The server is protected by AVG Business antivirus which is up to date.
My client has emailed today saying that they are getting a suspicious number of spam emails coming in which seem to be clever enough to look like they are legitimate. The examples given were:
We receive an email pretending to be a mobile phone bill from O2 when all our phones are from O2, we've received a mortgage completion statement from a company we deal with that was a virus in the zip file, we've had and an investment report from another company we have been dealing with containing a zip file with a virus.
Can anyone identify whether this is just pure co incidence or whether they feel something else is at play? I've run a company wide virus scan and nothing is picked up but it does seem a bit odd that some of these spam emails seem so relevant. Does this ring any bells with anyone or is it just coincidence and something a decent spam filtering service can deal with?
Thanks
I have a client running a 2011SBS server for Exchange and File Sharing. The server is protected by AVG Business antivirus which is up to date.
My client has emailed today saying that they are getting a suspicious number of spam emails coming in which seem to be clever enough to look like they are legitimate. The examples given were:
We receive an email pretending to be a mobile phone bill from O2 when all our phones are from O2, we've received a mortgage completion statement from a company we deal with that was a virus in the zip file, we've had and an investment report from another company we have been dealing with containing a zip file with a virus.
Can anyone identify whether this is just pure co incidence or whether they feel something else is at play? I've run a company wide virus scan and nothing is picked up but it does seem a bit odd that some of these spam emails seem so relevant. Does this ring any bells with anyone or is it just coincidence and something a decent spam filtering service can deal with?
Thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Typically I have an external spam filter or an internal one (like a barracuda) to deal with these spam emails. It is a little random and spoofing with payment (bills), BBB, and USPS are all common tricks to inject the virus. If you have a spam filter I would suggest bumping it up a little bit to hopefully snag them.
ASKER
Thanks Sembee, that article exactly matched my clients experience so looks like it's infected PC's elsewhere doing the damage.