The “awesome menu,” which is attached to particularly suspicious emails purporting to come from Starbucks, is actually a modified version of the infamous Zeus banking trojan, according to a Wednesday post by Kaspersky Lab.
The scam emails bearing the classic Starbucks logo claim that a friend, who wishes to remain anonymous “in order to make some mystery,” has invited you to an event with a special menu.
The phishing emails are easy to spot due to several spelling and grammar mistakes contained in the subject and body. Additionally, the emails are coming from Yahoo and Gmail accounts that have nothing to do with Starbucks.
Zeus is notoriously hard to remove and its numerous variants enable an assortment of attacks, including compromise of credentials via keylogging.