Alarm sounded over Peter Pan panto malware

Phishing scam dupes victims over panto ticket claims

Firms have been warned not to open an email claiming to contain tickets for a Peter Pan pantomime in Bournemouth.

The email is targeted at SMBs and purports to confirm a ticket order from a genuine company BH Live.

However, the email does not come from the company and carries an attachment containing malware.

The email is titled Confirmation of Order and urges the recipient to click on an attachment to print their tickets, which have been charged at 145.

The attachment then tries to install malware on a target machine, including a cryptolocker as well as other malware designed to sniff out highly sensitive information such as usernames and passwords. The malware is thought to be almost undetectable by current anti-virus software.

According to research carried out by IT security firm ThreatExpert, the malware tries to contact servers in France and Belarus.

Derek Knight, who runs security blog My Online Security, said the emails have random order numbers in the subject and the zip malware file has the same number as the order number.

"All of these emails use social engineering tricks to persuade you to open the attachments that come with the email," he said.

"Be very careful when unzipping them and make sure you have show known file extensions enabled', And then look carefully at the unzipped file. If it says .EXE then it is a problem and should not be run or opened," he added.

A statement issued on the website of the Bournemouth Pavilion said: "Emails have been sent to a number of recipients purporting to be from BH Live. Initial investigations suggest that emails did not originate from BH Live's systems or network. Please do not open any attachment or click any links. We will post updates via our website and social media. We apologise for any inconvenience."

Featured Resources

Five lessons learned from the pivot to a distributed workforce

Delivering continuity and scale with a remote work strategy

Download now

Connected experiences in a digital transformation

Enable businesses to meet the demands of the future

Download now

Simplify to secure

Reduce complexity by integrating your security ecosystem

Download now

Enhance the safety and security of your people, assets and operations

Enable a true vision of security with an engineered solution based on hyperconverged and storage platforms

Download now

Recommended

'Largest ever' Magecart hack compromises 2,000 online stores
hacking

'Largest ever' Magecart hack compromises 2,000 online stores

15 Sep 2020
'NetWalker' ransomware explodes thanks to 'as a service' expansion
ransomware

'NetWalker' ransomware explodes thanks to 'as a service' expansion

4 Sep 2020
Infocyte integrates with Palo Alto Networks Cortex XSOAR
cyber security

Infocyte integrates with Palo Alto Networks Cortex XSOAR

19 Aug 2020
The Ritz suffers data breach after hackers pose as staff
data breaches

The Ritz suffers data breach after hackers pose as staff

17 Aug 2020

Most Popular

Accenture ploughs $3 billion into cloud migration support group
digital transformation

Accenture ploughs $3 billion into cloud migration support group

17 Sep 2020
Google takes on Zoom with launch of Meet hardware
video conferencing

Google takes on Zoom with launch of Meet hardware

16 Sep 2020
16 ways to speed up your laptop
Laptops

16 ways to speed up your laptop

16 Sep 2020