Fake Walmart 'Order Details' Email Opens Malware Website
OutlineEmail purporting to be from Walmart claims that you can click a link to read more information about a recent order.
© Depositphotos.com/ Wavebreakmedia
Brief AnalysisThe email is a scam. It is not from Walmart. Clicking the link opens a website that contains malware. This attack is very similar to another malware campaign in which bogus emails claim to be from Costco.
'Walmart' Email Claims to Contain Order Details
Email is Not From Walmart - Link Opens Malware Website
If you receive this email, you may be concerned that fraudulent purchases have been made in your name and click the link in the hope of finding out more details.
Or, perhaps you really did purchase products via Walmart and click the link in the belief that you can check the status of your expected orders.
But, in fact, the link opens a compromised website that harbours malware. In some versions, the malicious download may start automatically. In other cases, a notice on the website may instruct you to download a file to view the order information.
Generally, the download will be a .zip file that contains a .exe file inside. Clicking the .exe file will install the malware on your computer.
The exact malware payload delivered in such attacks may vary. But, typically, such malware can collect sensitive information from your computer and send it to criminals. It may also download further malware and allow criminals to take control of your computer.
Costco Version Also Being Distributed
In fact, fake order emails are a very common means of distributing malware. And, as Christmas approaches, criminals tend to ramp up their efforts to infect your computer and steal your money.
© Depositphotos.com/ maxkabakov
Last updated: December 2, 2014
First published: December 2, 2014
By Brett M. Christensen