A recent spam campaign in Denmark that impersonates the Danish post office is infecting victims with Cryptolocker 2. According to Heimdal Security, the campaign is part of a long list of cyber-attacks that target one country at a time, at different time intervals, and use the same tactic: posing as seemingly legitimate emails from the local post office. The scam works like this: an email purporting to be from the post office arrives, saying that the postman didn’t find you home, so you have to go to the post office yourself to get your package. But, once the victim clicks on the link in the email, he or she is redirected to a website that automatically downloads an executable file. That encrypts the hard drive and all of the data on it. A message will pop up asking for a hefty ransom.
In this iteration, unsuspecting users from all over Denmark received emails pretending to be delivered by Post Denmark or PostNord. Heimdal pointed out that the tactic is not a new one.
View full story