Dridex authors targets victims with fake Amazon gift card emails
Cyber security researchers firm, Cyberreason, discovered a new phishing campaign where malware is distributed disguising as an Amazon gift certificate sent via email.
The spam email tries to lure people into opening the provided a button on the email page by triggering them into thinking that this is supposed to provide a $100 gift certificate that users must redeem by just by a single click.
However, when a recipient clicks on the provided button, they end up downloading a malicious Word documents with the names similar to ‘Amazon_Gift_Card,’ ‘Order_Gift_Cart,’ and ‘Amazon_eGift-Card.’
This scam distributes Dridex malware, a banking Trojan that steals information, logs keystrokes, takes screenshots, and downloads/ installs additional malware.
Since the attachment file in an online version of Microsoft office, it asks users to click on Enable content button. On doing so, they allow this file to run macros command to download/ install the Dridex malware.
Beware of this scam, whenever you receive any emails pretending to be gift cards and prompting you to download and open any Microsoft Word documents, immediately close them. As you see, the malware infection is caused when such a file is opened and the macros command is enabled, Thus, it is crucial for you not to not doing so if you want computer security and personal safety.
Remember this fact that Amazon will never prompt you to download a file to redeem a gift certificate. Instead, it provides a legit Amazon gift card with certain code that you redeem on the Amazon official website and fund to your account.