Warning – Fake Email Notifications for SSL Certs
Cisco has recently put out a threat warning to LogMeIn users about a fake email going around that says their SSL Certificate has expired.
From Cisco:
“Cisco Security Intelligence Operations has detected significant activity related to spam e-mail messages that claim to contain a LogMeIn.com SSL certificate suspension notice for the recipient. The text in the e-mail message attempts to convince the recipient to follow a link and update the digital certificate. However, the link directs the user to a malicious .zip file containing an .scr file that, when executed, attempts to infect the system with malicious code.”
These emails have been seen to have either ssl_cert_logmein.zip or ssl_cert_logmein.scr file attachments. See below for a sample of the email currently circulating.
This is hardly a new rouse for spammers. Posing as a known entity is one of their most successful scams. If you have any questions about an email claiming your SSL Certificate has expired, contact the company you purchased it from directly, do not click on the email’s links and inadvertently invite something or someone malicious into your computer.
6 Comments
Howdy! I’m at work surfing around your blog from my new apple iphone! Just wanted to say I love reading your blog and look forward to all your posts! Carry on the fantastic work!
Hello there, I found your web site via Google while looking for a related topic, your web site came up, it looks good. I have bookmarked it in my google bookmarks.
Can you recommend a good internet hosting provider at a reasonable price? Thank you, I appreciate it!
http://www.tsis.net
I got this web site from my pal who told me regarding this
site and at the moment this time I am browsing this web
page and reading very informative posts here.
I couldn’t resist commenting. Well written!