Buy McDondald’s Hamburgers, Not Spam

Written by Carl E. Reid on December 16, 2008

Buy McDondald's Hamburgers, Not SpamCyber criminals are capitalizing on McDonald’s trusted family friendly global reputation. With the holiday season in full swing, it is easy for people to let their guard down. People are receiving emails with dangerous worms disguised as coupons and another email with a fake McDonald’s survey.

Fake McDonald’s Malware Email
Recently it was detected that there is increased activity related to fake email messages being presented with Christmas coupon offers from the McDonald’s restaurant chain.  The email message informs the reader to the existence of an updated McDonald’s discount menu.  The e-mail message attempts to convince users to open a .zip attachment to receive coupons that are redeemable at their local McDonald’s franchise.  The attachment contains a malicious .exe file.  If executed, the .exe file infects the targeted user’s system with malicious code.

E-mail messages that are related to this threat may contain the following files:
coupon.zip
coupon.htm or spaces.exe

The .exe file in the .zip attachment has a file size of 449,024 bytes.  This threat outbreak is related to the W32.Ackantta@mm worm and has a severity rating of 4.  The worm could allow a remote attacker to execute arbitrary commands on the infected computer system or gather information such as IP addresses or user keystrokes.

The following text is a sample of one of the email messages that is associated with this threat outbreak:
Subject Line: McDonalds wishes you Merry Christmas!
Message Body: McDonald’s is proud to present our latest discount menu.  Simply print the coupon from this Email and head to your local McDonald’s for FREE giveaways and AWESOME savings.

Fake McDonalds Phishing Email
In a related story by John Leyden, phishing criminals are attempting to scam people into handing over their personal details on the basis of a supposed offer from McDonalds.  The scam relies on spam emails to trick readers into answering a fictitious satisfaction survey that offer a non-existent reward of $75.00. After completing the survey prospective marks are asked to hand over their banking details in order to receive their reward. Unsuspecting people are asked for their name, email address, and credit card details.

About Carl E. Reid

Developing his career from the mail room to the board room, Carl E. Reid has achieved success by skillfully blending 40 years of technology and business intelligence experience with his passion for helping companies succeed. Carl is founder and CEO of NetTECH Systems Reid & Associates, Inc., an emerging technology consulting company located in the New York City area. One of his specialties is 15 years as a collaboration and email infrastructure consultant. He has implemented and supported Lotus Notes/Domino and other types of SMTP gateway/network configurations in small to large global companies up to 33,000 employees. Some of his clients have included IBM, Citi, JPMChase, Oxygen, LVMH - Moet Hennessy, MeadWestvaco, non-profits and professional organizations. Carl is a Savvy Business Owner, Public Speaker and Author. His articles have appeared in Network World, Computer Monthly magazines and hundreds of web sites. Combining business technology consulting with professional blogging, Carl specializes in advising clients how to best leverage the Internet as a tool for high impact visibility. Carl's speaking style combines humor with expertise, and his advice is always down-to-earth and practical. He personally publishes Library of Congress recognized newsletter blog, http://www.SavvyIntrapreneur.com and http://www.iTechSpeak.com. Carl wrote the original "Professional Blogger Job Description", being used as standard document within companies. As a business career coach, Carl teaches professionals how to run their career as a profitable business.

Comments

Ronald January 15, 2009

Awesome, I would pat the guys doing this on the back, McDonalds deserve it. McCrap food, McHeartAttack, McStroke, McLibel & McCheapLabour! Hope their company goes bust and no I most certainly dont eat at McDonalds!

  • (required)
  • (required)