MALWARE - 'British Airways - Your Flight Ticket Not Activated'
Email purporting to be from British Airways claims that your flight ticket has not been activated and asks you to open an attached file and fill in a form to complete the ticket activation.
The email is not from British Airways. The attached .zip file hides a .exe file that, if opened, could install information-stealing malware on your computer.
Subject: Your flight ticket is not activated yet.
Your flight ticket number: #877764-6192359-BA-90050320142 has not been activated yet.
In order to activate the ticket please download the attachment and fill in the form.
In the case you wish to cancel your flight and apply for a refund, please confirm that your billing info (found in the attachment) is valid.
British Airways 'Ticket Not Activated' Emails are Fake:
Bogus emails claiming to be from British Airways are currently hitting inboxes. The emails claim that your British Airways flight ticket has not yet been activated and advise you to open an attached file to complete a ticket activation form. The emails also claim that you can cancel your flight and request a refund via the attached form.
Email Attachments Contain Malware:
The emails have no connection to British airways. If you open the attached .zip file, you will find a .exe file hidden inside. Opening this .exe file can install malware
on your computer.
Once installed, the malware may collect your passwords and other sensitive personal data and send it to online criminals. It may also download and install further malware and allow criminals to control your computer from afar.
Emails Try to Panic Recipients Into Opening Attachment:
The scammers hope that recipients, fearing that their credit card has been fraudulently used to purchase airline tickets, will open the attached file without due caution.
And, of course, people who have recently bought British Airways tickets may be especially vulnerable to the scam.
Fake Airline Ticket Emails Are a Common Malware Tactic:
Sending fake ticket or flight itinerary emails is a common scammer tactic. In recent years, similar malware campaigns have used the names of several airlines, including Delta Airlines
, American Airlines
, and Qantas
Do Not Open Attachments or Click Links in The Email:
If you receive this email, do not open any attachments that it contains. Do not click any links in the email either because some versions may place the malware on a compromised website rather than in an attachment.
Last updated: June 2, 2014
First published: June 2, 2014
Written by Brett M. Christensen