Bogus email from order-update@amazon.com

**canis** · 05-02-2012, 01:10 PM

Just got an email from that site.

Subject: Your Cancellation (17-4833-4948)

It's supposed to be a cancellation for some book I never ordered.

There was a link they wanted me to click on in the text of the message (which I didn't do).

Did a search before removing the email and found this:

Waiting for a delivery from Amazon.com? Well, be careful if you receive a notification in your email - as it could be that hackers are trying to trick you into infecting your computer.

We're intercepting a wave of forged emails which claim to come from order-update@amazon.com, but unlike regular emails from the dot com giant they have a malicious file attached designed to run a Trojan horse on your computer.

and..

Sophos detects the attached file as Troj/CryptBx-Zp and Mal/CryptBox-A.

http://nakedsecurity.sophos.com/2010...email-malware/

**canis** · 05-02-2012, 01:30 PM

The search on the net shows that this thing has been around since 2009. It must be making a resurgence again.

The text of mine looked like this, with the order no. hyperlinked to their malicious site.

Dear Customer,

Your order has been successfully canceled. For your reference, here's a summary of your order:

You just canceled order 13-8543-3980 placed on May 2, 2012.

Status: CANCELED

**wrecktangle** · 05-03-2012, 06:36 AM

Whenever I get an email from a company i do business with, if I'm the least bit suspicious, I go to the email properties and see where it's really coming from, prior to actually opening the email. I've even resolved the IP address if I'm still not satisfied.

**bmore_ken** · 05-03-2012, 08:35 AM

I never check my orders via an email link. I always go directly to the site I ordered it from

**sigmalady** · 05-03-2012, 10:11 AM

Originally Posted by bmore_ken

I never check my orders via an email link. I always go directly to the site I ordered it from

So do I. And legitimate emails rarely begin "Dear Customer".

**Seadog** · 05-03-2012, 10:34 AM

Originally Posted by bmore_ken

I never check my orders via an email link. I always go directly to the site I ordered it from

Absolutely the best policy. I do that for my bank and Paypal also.

**Jeebus** · 05-03-2012, 10:47 AM

Other versions include:

"Your Verizon Wireless phone bill for $1,182"

or

"Your SouthWest Airlines seat assignment for your flight"

in hopes that the spamee has either a VW account or is flying on SW soon, and they will readily click through to the virus/malware site.

**BS21213** · 05-03-2012, 03:29 PM

sounds like you in a heap-o-trouble!

**Snoopy71** · 05-10-2012, 06:38 AM

I got 3 of these emails from "Amazon" yesterday.

**canis** · 05-10-2012, 12:28 PM

Originally Posted by Snoopy71

I got 3 of these emails from "Amazon" yesterday.

I got 2 more since I first posted this.

Thread: Bogus email from order-update@amazon.com

Thread Tools

Display

Bogus email from order-update@amazon.com

Posting Permissions