Beware a new email phishing campaign that is targeting people by using your home address and claiming you are overdue payment on an invoice.
The message in this one uses good grammar and is fairly well worded but is quite dangerous. If you fall victim by clicking the link, it executes a new variant of ransomware that doesn’t require a network connection to function. As we all know from previous posts on this blog, ransomware is designed to encrypt all of your files and hold the decryption key for ransom. Pay up, or lose all your files that have not been backed up to a separate system.
Folks, don't fall for this. The best way to avoid becoming a victim of a phishing attack is simple: Do not click links in email unless you've validated the sender, and don't open attachments to emails unless you are 100% certain they are safe.
See Tripwire’s coverage here, which contains a snapshot of a sample phishing message: http://www.tripwire.com/state-of-security/latest-security-news/phishing-campaign-sends-out-scam-emails-containing-recipients-home-address/.
Have you backed up your files yet? Better safe than sorry!
Previous posts are: