Categories: MobilitySecuritySmartphonesWorkspace

iTunes Malware Kicks Off Christmas Scam Season

Scammers are taking advantage of the Christmas shopping season with a flood of malware-bearing emails disguised as iTunes gift certificates, according to security experts.

The email arrives on the eve of Thanksgiving in the United States, which customarily kicks off the Christmas gift-shopping season in that country and elsewhere.

Disguise

It appears to come from a legitimate email address – official@itunes.apple.com – and contains an attachment called Gift_Certificate_iT9581.zip that pretends to offer $50 (£32) of credit at the iTunes Store, according to German security firm Eleven Security. When the file is launched it deploys an malicious executable file, Eleven said.

The malware, which Sophos has identified as Mal/BredoZp-B, creates a backdoor into a user’s system that can be used to download more malicious code, according to security vendors.

The message contains plain text only, with no graphic elements, Eleven said. The company said about half of the emails it detected originated from US IP addresses, with another 10 percent from the UK.

“As the holidays ramp up, so do scams like this,” wrote Sophos blogger Lisa Vaas. “It’s understandable that cash-strapped holiday shoppers might be click-happy enough to try to lighten their holiday with $50 worth of free music, video and games.”

Mal/BredoZp-B has been used in several other spam campaigns, including fake notifications from the US’ Federal Deposit Insurance Corporation in August.

Fraud shutdown

Earlier this month the Metropolitan Police’s Central e-Crime Unit (PCeU) said it had shut down more than 2,000 fraudulent e-commerce websites ahead of the Christmas shopping season, the latest move in the unit’s long-running battle against counterfeiting and fraud.

The PCeU worked with registrar Nominet to identify and shut down the site, but said no arrests were made. The police and Nominet would not name the sites which were taken down – but hinted that a future change might bring in “name and shame” publication of the culprits, as a result of the Nominet’s current review of criminal takedown rules.

Matthew Broersma

Matt Broersma is a long standing tech freelance, who has worked for Ziff-Davis, ZDnet and other leading publications

Leave a Comment
Share
Published by
Matthew Broersma
Tags: iPhoneiTunesscam
13 years ago

Recent Posts

Napster Sold And Will Return As Interactive Streaming ServiceNapster Sold And Will Return As Interactive Streaming Service

Napster Sold And Will Return As Interactive Streaming Service

New chapter for famous name from Internet's early days, Napster, has been acquired and will…

3 hours ago
UK Proposes To Allow Satellites To Resolve UK Mobile Not-SpotsUK Proposes To Allow Satellites To Resolve UK Mobile Not-Spots

UK Proposes To Allow Satellites To Resolve UK Mobile Not-Spots

Solving not-spots? Ofcom proposal to make UK the first European country to allow ordinary smartphones…

4 hours ago
Waymo Confirms Washington DC Robotaxi Plan For 2026Waymo Confirms Washington DC Robotaxi Plan For 2026

Waymo Confirms Washington DC Robotaxi Plan For 2026

Pioneering robotaxi service from Alphabet's Waymo to go live in Washington DC next year, as…

5 hours ago

US Adds 50 Chinese Firms To AI, Chip Blacklist

Dozens of Chinese firms added to US export blacklist, in order to hamper Beijing's AI…

7 hours ago

Tesla Europe Sales Plummet, As Owners Return EVs At Record Levels

Chinese rival BYD overtakes global revenues of Elon Musk's Tesla, as record number of Tesla…

9 hours ago

Signal App In Spotlight Amid Secret Chat Controversy Of US Officials

Messaging app Signal in the headlines after a journalist was invited to a top secret…

11 hours ago