Fake Comcover emails claiming "Nonrefundable loan" may lead to computer infection - SSO-AL2009-053

04 November 2009

Software and platforms affected

The following operating system platforms:

Windows (any version)

What is the problem?

Spam emails are circulating which are designed to infect your computer with a program that could steal your passwords and other personal information (identity theft).

The email reads:

---

From: "Comcover Gov" comcover@comcover.com.au

Subject: Nonrefundable loan approved for your company!

Dear Sir,

Comcover - Insurance Solutions, Risk Management Strategies from the Better Australian Government Business, is contacting you to inform you that you qualify for the $50,000.00 economical crisis support for Australian privately-owned firms.

We are providing this support to help the economy grow and avoid economic shrinking.
You do not need to pay anything upfront to receive the support funds. This is a nonreturnable loan that we are glad we can provide at this difficult time to you.

Please download and complete the form attached with the requested information and send it back to us by FAX at 29700879 and in maximum 3 working days we will contact you with the details you need to receive the support loan.

We are waiting for the completed form to be sent to us as soon as possible.

Thank you,
The Australian Government - Comcover - Insurance Solutions, Risk Management Strategies

---

The emails all contain a doc file attachment which should not be opened.

What we recommend you do

If you receive an email similar to the above emails, do not open the attachment to the email. Delete the email straight away.

If you have already clicked on the attachment, it is quite possible your computer may now be infected. It is recommended you seek professional assistance in helping detect and remove the malware.

Make sure you have anti-virus software installed and keep it updated.

Where you can find more information

The following links provide more information about the malicious software in these spam emails:

http://www.sophos.com/security/analyses/viruses-and-spyware/trojbifrosezb.html

Disclaimer

This Advisory has been prepared by AusCERT for the Department of Broadband, Communications and the Digital Economy.

The information is intended for used by home users and small to medium sized businesses and is general information only and not intended as advice and was accurate and up to date at the time of publishing. The material and information in this Advisory is not adapted to any particular person's circumstances and therefore cannot be relied upon to be of assistance in any particular case. In any important matter, you should seek professional advice relevant to your own circumstances.

The Commonwealth, AusCERT, and all other persons associated with this Advisory accept no responsibility or liability for information either included or referred to in the Advisory. No responsibility or liability is accepted for any damage, loss or expense incurred as a result of the information contained in the Advisory, whether by way of negligence or otherwise.

The listing of a person or organisation in any part of this site or Advisory does not imply any form of endorsement by the Commonwealth of the products or services provided by that person or organisation. Similarly, links to other web sites have been inserted for your convenience and do not constitute endorsement of material at those sites, or any associated organisation, product or service.

Please note that material in this Advisory, as the case may be, includes views or recommendations of third parties, which do not necessarily reflect the views of the Commonwealth, or indicate its commitment to particular course of action. Material on this site or in this Advisory may also include information provided by third parties. The Commonwealth cannot verify the accuracy of information that has been provided by third parties.

		SEARCH
Home Advisories Alerts Newsletters Subscribe or Log In Visit Stay Smart Online	Larger text Smaller text You are here: Stay Smart Online Alert Service > Client applications > Fake Comcover emails claiming "Nonrefundable loan" may lead to computer infection - SSO-AL2009-053 Fake Comcover emails claiming "Nonrefundable loan" may lead to computer infection - SSO-AL2009-053 04 November 2009 Software and platforms affected The following operating system platforms: Windows (any version) What is the problem? Spam emails are circulating which are designed to infect your computer with a program that could steal your passwords and other personal information (identity theft). The email reads: --- From: "Comcover Gov" comcover@comcover.com.au Subject: Nonrefundable loan approved for your company! Dear Sir, Comcover - Insurance Solutions, Risk Management Strategies from the Better Australian Government Business, is contacting you to inform you that you qualify for the $50,000.00 economical crisis support for Australian privately-owned firms. We are providing this support to help the economy grow and avoid economic shrinking. You do not need to pay anything upfront to receive the support funds. This is a nonreturnable loan that we are glad we can provide at this difficult time to you. Please download and complete the form attached with the requested information and send it back to us by FAX at 29700879 and in maximum 3 working days we will contact you with the details you need to receive the support loan. We are waiting for the completed form to be sent to us as soon as possible. Thank you, The Australian Government - Comcover - Insurance Solutions, Risk Management Strategies --- The emails all contain a doc file attachment which should not be opened. What we recommend you do If you receive an email similar to the above emails, do not open the attachment to the email. Delete the email straight away. If you have already clicked on the attachment, it is quite possible your computer may now be infected. It is recommended you seek professional assistance in helping detect and remove the malware. Make sure you have anti-virus software installed and keep it updated. Where you can find more information The following links provide more information about the malicious software in these spam emails: http://www.sophos.com/security/analyses/viruses-and-spyware/trojbifrosezb.html Disclaimer This Advisory has been prepared by AusCERT for the Department of Broadband, Communications and the Digital Economy. The information is intended for used by home users and small to medium sized businesses and is general information only and not intended as advice and was accurate and up to date at the time of publishing. The material and information in this Advisory is not adapted to any particular person's circumstances and therefore cannot be relied upon to be of assistance in any particular case. In any important matter, you should seek professional advice relevant to your own circumstances. The Commonwealth, AusCERT, and all other persons associated with this Advisory accept no responsibility or liability for information either included or referred to in the Advisory. No responsibility or liability is accepted for any damage, loss or expense incurred as a result of the information contained in the Advisory, whether by way of negligence or otherwise. The listing of a person or organisation in any part of this site or Advisory does not imply any form of endorsement by the Commonwealth of the products or services provided by that person or organisation. Similarly, links to other web sites have been inserted for your convenience and do not constitute endorsement of material at those sites, or any associated organisation, product or service. Please note that material in this Advisory, as the case may be, includes views or recommendations of third parties, which do not necessarily reflect the views of the Commonwealth, or indicate its commitment to particular course of action. Material on this site or in this Advisory may also include information provided by third parties. The Commonwealth cannot verify the accuracy of information that has been provided by third parties.
	Last Updated: 2009-11-04 Copyright \| Privacy \| Disclaimer