Spamvertised ‘KLM E-ticket’ themed emails serve malware


Share this news now.

KLM customers, beware!

Cybercriminals are currently spamvertising millions of legitimate-looking emails, in an attempt to trick current and prospective KLM customers into executing the malicious attachment found in the email.

More details:

Sample screenshot of the spamvertised ‘KLM E-ticket’ themed email:

Second screenshot of the spamvertised ‘KLM E-ticket’ themed email:

Detection rate for the malicious attachment: KLM-e-Ticket.pdf.exe – MD5: 9c51f89ec22913bfac3d44afb486376b – detected by 34 out of 43 antivirus scanners as Trojan-Ransom.Win32.PornoAsset.wqc; Gen:Heur.PIF.3

Webroot SecureAnywhere users are proactively protected from this threat.

You can find more about Dancho Danchev at his LinkedIn Profile. You can also follow him on  Twitter.

Share this news now.


  1. [...] the recently launched malicious campaigns impersonating KLM and American Airlines, cybercriminals are once again busy impersonating yet another company, this [...]

  2. [...] for cybercriminals. On numerous occasions, we intercepted related campaigns attempting to trick customers into clicking on malicious links, which ultimately exposed them to the client-side exploits served [...]