ESET Ireland warns that the nasty Nemucod malware is back as the malicious payload of a fake BT bill.
At ESET Ireland we’ve been informing the public about Nemucod for a while. About a year ago it was one of the prevalent malware infections in Ireland with a 50,42% detection rate, while the global average was only 15,82%.
It all starts with an email, appearing to come from BT with the subject “New BT Online Bill”, equipped with all the correct logos and graphics. The content of the email says:
“Your bill amount is: 376.03 GBP. This doesn’t include any amounts brought forward from any other bills.
We’ve put your latest BT bill for you to view. See your bill here.
The PDF version of your bill might not be available for download yet. It can take up to 48 hours.
We’ll take your payment from your account as usual by Direct Debit.”
ESET Ireland urges extreme caution with such emails and avoiding clicking any links or attachments they contain.
The full story with screenshots is available on ESET Ireland’s official blog.