The IRS officially kicked off the beginning of tax season in the US, and just right in time for it are the cybercriminals who are already taking advantage and using tax-related messages as a social engineering lure.
We’ve recently spotted samples of spammed messages posing as a notice from Fidelity Investments, a well-known American financial institution.
The email, which is in a newsletter-format, contains the subject “Your statement is ready for your review“. It informs recipients that his/her tax statement is attached and ready for review.
The attachment, however, is a .ZIP file containing an executable file, which was found to be malicious. Trend Micro detects it as TSPY_ZBOT.TYR.
Users should watch out for such spam campaigns, specially with the tax season already ongoing. We saw attacks similar this one during the tax season last year, so it’s almost a given we’ll see more of it again this time around.
Spam emails such as those shown above are already blocked through the Trend Micro Smart Protection Network.