And it's after your credit card details this time...
By Andy McCue
Published: 14 November 2003 11:00 GMT
Users are being warned about a new variant of the Mimail worm on the loose that takes victims to a fake PayPal web page in an attempt to steal credit card details.
The variant, W32/Mimail-I, hits inboxes with the subject line "Your Paypal.com account expires" and tells the user they need to update their credit card details because of a new security policy being implemented.
But in a twist on the spate of 'phishing' scams in recent weeks, the email tells the victim not to send personal information via email, saying that email is insecure – and asks them to run an attached program instead.
The attached file, 'www.paypal.com.scr', brings up a pop-up box with a PayPal logo when run that requests a user's credit card details including card number, PIN number and expiry date.
Not only are gullible or unsuspecting users fleeced of their credit card details but Mimail-I sends itself to everybody whose email address appears on the victim's hard disk in order to spread itself.
David Emm, AVERT marketing manager at McAfee, said the worm is currently rated as low-risk but added that the PayPal element is a new twist.
"We have increasingly seen over the last two years things that drop back door trojans onto systems to gather information but this is the first time we have seen it wrapped up with the whole PayPal scam," he said.
Anti-virus firm Sophos reaffirmed its advice to users not to click on web links or attachments sent in emails that claim to come from banks or financial companies and block all Windows programs such as exe, dll, scr, bat and pif files at the email gateway – and of course, update your anti-virus software regularly.
Thanks for the great information on this worm. Th...
Lugui
Your article will make me doubly attentive of any ...
Dave Wall
Not that PayPal seem to care! I've been receiving ...
Gareth Davies
I've had 2 paypal emails in the last few days - on...
Dominic Pinto
What is Pay Pal doing about this E-mail Virus Scam...
McNaughtY
My client is a large financial organisation and they're looking for an experienced Business Analyst to work on part of their Banking Transformation ...
A good working knowledge of credit card business and Financial Services background. Support and modify existing application programs as required. ...
You will be reponsible for:Driving forward with innovative technology solutions that will support / realise both technology and business ideas/goals ...
Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.
Stories from the web...
Copyright © 2008 CBS Interactive Limited. All rights reserved. Top of page
Digg
Slashdot
Del.icio.us
Stumble
Reddit
RSS Feeds
silicon.com staff Inbox: Social networking can help you secure a job Plus: Open source advocates hit back at CIOs and netbooks fail 'fit for work' test
Clive Longbottom Windows 7: Not perfect - but ready for prime time Microsoft's latest OS fixes most of Vista's ills - but still has challenges ahead