Phishing emails that claim to come from vendor Trend Micro have been detected.
The emails feature the subject line ‘malware blocking tests put Trend Micro on top' and inform users about recent NSS Labs tests, which evaluated that new reputation-based anti-virus systems are doing a better job of blocking malicious software than did their predecessors. In the tests, Trend Micro's software improved by 23 per cent with the system active.
However, were a user to click on any of the links within the email, they were redirected to a phishing site that is now inaccessible, plus Trend Micro web reputation blocks access to the URL involved.
Trend Micro's solutions product manager Menard Osena claimed that targeting trusted organisations is not an uncommon technique, as messages were detected back in September that informed the recipient that the messages contained a picture supposedly requested by those who received the mails themselves. This also carried the Trend Micro logo as a ‘guarantee' to users that the file they are about to download is legitimate.
Osena said: “Based on Whois information, the domain was created last September 2009. Apart from this, however, the site did not hold any other information on the said domain. The attack also employed the so-called ‘genuine-looking URL' phishing technique wherein cybercriminals imitated the URL of the target company in order to steal user information.”
Trend Micro advised users to pay close attention to the content of and URLs within emails.