The key in this scam is that phishers must send emails to execs and their assistants - with information presumably gleaned from social networking websites - that can download a trojan. The malware then steals personal information from the corporate PCs.
But what happens when scammers aren’t willing to put the research time in, but still want to strike gold by stealing corporate information?
Here’s a copy of a phishing email I received just this week. Needless to say, it’s addressed to the wrong guy!
RE-CONSTRUCTION OF IRAQ - VARIOUS SUPPLIES...
My name is ( ABD-AL-RAHMAN) and this is an urgent contract.We have recieved an allocation for a contract to supply your company’s Product, this is a Multi Million Dollars worth of international supplies to Iraq.
My benefactor in this project is a high level Iraqi Government official who has mandated me to seek for your confidential cooperation and participation in this contract.If your company is capable of supplying or help to re-construct iraq, You would be paid cash before you supply. If you can assist us, then kindly contact me immediately via the details below,and make sure to furnish me with your full company profile,full names,direct telephone and fax numbers,and include your direct email address.
As soon as we recieve your response, we shall get back to you with all details to commence.
( [email protected] )
NB:100% upfront payment for all supplies.