Over the past 24 hours, cybercriminals have been spamvertising millions of emails targeting customers of BT’s Business Direct in an attempt to trick its users into executing the malicious attachment found in the emails. Upon executing it, the malware opens a backdoor on the infected host, allowing the cybercriminals behind the campaign to gain complete access to the affected host.
Screenshot of the spamvertised email:
Detection rate for the malicious attachment: MD5: 8d0e220ce56ebd5a03c389bedd116ac5 – detected by 29 out of 43 antivirus scanners as Trojan-Ransom.Win32.Gimemo.ashm
Webroot SecureAnywhere users are proactively protected from this threat.