Thursday, September 04, 2014

Fake eFax Email Message eFax Virus Alert

Fake eFax email notification of new Fax. 

 eFax Email Message Scam

With so many scams on the internet coming in the form of email. The two most common are emails with attached files, and the second most common is emails that look to be from legitimate sources but are spoofed (faked" to look real. They are from real legitimate companies doing real business and providing real services. The most common of those are conceived to look like email communications from banks. Since many people have become more savvy, the use of the fake bank emails has become less popular for the spammers and scammers. They use other methods such as the case of eFax, or documents sent from multi-function copier/scanners which we all have in our offices today capable of sending scanned documents to email. The subject will contain Xerox or Sharp or other well known manufactures of scanner/copiers as in many cases those subjects are part of the defaults of the configuration for the scanner/copier.
The image in this post depicts one of those such scams. It looks like a real eFax notification and contains no attachments, just links.

eFax Virus Alert Fake eFax Email

Clicking on one of those links will bring you to a web site that is not of course from eFax but instead a site that will contain malicious code in its pages. That code will attempt to add malware or some other malicious code to your computer and surely compromise your data and at times the integrity of your network. Another common fake email notification has been from shipping carriers like UPS.
Once of the best ways to check for yourself to determine if the email is a scam and the links are fake is to hover your mouse cursor over the link. Hovering the mouse over the link will show the URL - the site that you will connect to if you click on the link. Depending on browser version, you will be notified of the potential risk and will be required to "approve" continuing to the site. Chrome does this kind of check for bad sites.

eFax Corporate Fax Message Fake with Malicious Links

Warn your users about this eFax Virus Email 

Undoubtedly there will be unknowing individuals who will click on the links within this fake eFax fax message email notification. They will get a virus or two on their systems and perhaps a stealth Trojan that will haunt them, slow down their computer, or even worse hold their files for ransom. The message looks very real and only if you are somewhat knowledgeable or have excellent protection already installed on your system, the bad guys will get them. One point to note, as stated above, Chrome will warn the user and that will help prevent some of the spread of this fake eFax message containing viruses and malicious intent. Having Chrome installed is not enough, it has to be the default browser on the system in use. The link is clicked from within the fake eFax Virus email, the default browser opens and connects to tyhe web site.


Anonymous said...

This fake eFax email message was in my inbox and the eFax email looked so real. I use eFax corporate and almost clicked on the link. However, in Outlook, if you mouse over the links in the email you can see what site you will be redirected to. eFax does not use just IP addresses in their real email messages. This was a totally fake eFax email message. Just curios. I copied the URL into my clipboard and tool everything off of the URL except the ip address. I entered it into Chrome's address bar and Chrome warned me that the site has malware on it and needed approval to connect. Of course I did not but that's how easy someone can be tricked into clicking on the scam fake email emails like this one from eFax. I have seen fake emails from UPS and from xerox copier scanners. This was the first from eFax (for me anyway).

Anonymous said...

Although many users have become sofisti atdd enough to know how to check for fake emails and links , many are still vulnerable to these types of fake spam emails. The content of the email messages most often looks so real that for a average computer user its very difficult to distinguish between a real message and a fake one. I have seen these types of fake scam emails before. I have not received a fake spam efa,x email yet and that. Would be because my spam filter is up to date and preventing them from coming through. I have seen fake spam virus emails from UPS . these fake. Virus efax emails are very similar to those. Less of these fake spam emails will get through as spam filter databases update. As new fake spam my virus emails are introduced, there is an initial period of time that they get past many filters until he filters update and are able to stop them. During this window of opportunity, users get once ted with Trojans and viruses from emails such as the one from efax.

Anonymous said...

Received one of these the other day. Don;t know how it got past my spam filter but it might be because the filter did not update yet. Just as stated in the post, if you float your mouse cursor over the links you can see that the URL is not to an efax web site or sub-domain. They are ip addresses and that is always suspicious. too bad many average users don;t know that simple trick .Another thing to look at is the from address. In this case the from email was from an odd domain, not an efax domain. It may have been spoofed to.

AnonG said...

I had a client that had received one of these scam fax massages. They unfortunately thought it was real. I had recently encountered the Serefef Virus Trojan which I thought had been mitigated and not spreading. It turns out this client has Windows XP and their anti-virus software had expired. Because their AV software was expired, it was not getting updates and therefore the Serefef Trojan was able to get on their computer and infect it. The following post helped solve the problem Remove Serefef Virus Trojan. Afterwards I also ran an online scanner. The online scanner I use the most recently is one by ESET. 4RemoteSupport online software for desktop support is used for remote access and remote control of the computer or desktop through the web. 4RemoteSupport online remote desktop control enables us to remote control the computer PC online over the Internet with file transfer and auto-reconnect capabilities.