Spammers have been sending out emails purporting to be from Royal Mail to try and trick victims into downloading malware [5 December 2013]
The emails have been identified by MX Lab, and confirmed as fakes by Royal Mail who have received thousands of calls and emails about them. They have been sent from a spoofed address called “Royal Mail Group” and read:
Mail – Lost / Missing package – UK Customs and Border Protection
Royal Mail has detained your package for some reason (for example, lack of a proper invoice, bill of sale, or other documentation, a possible trademark violation, or if the package requires a formal entry) the RM International Mail Branch holding it will notify you of the reason for detention (in writing) and how you can get it released.
Please fulfil the documents attached.
If you receive one of these emails you should delete it immediately, report it to Action Fraud and don’t download the attached zip file. The type of malware the zip file contains can steal information from your internet browser, change your firewall settings, and modify your Windows registry according to MX Lab.
Fraudsters are opportunistic and know that during the Christmas period many of us are waiting for deliveries and parcels – if you are waiting for a delivery from Royal Mail and it is late you should contact them directly.