iTunes '$50 Voucher' Email is a Scam

Dennis Faas's picture

Web users have been warned to watch out for a bogus email claiming to offer vouchers for iTunes as a Black Friday bonus. It's actually malicious software that has been responsible for as much as 60 per cent of current online infections.

The emails are reportedly coming from the address, though this is address is fake and may change. Emails have the headline "iTunes Gift Certificate" and contains a text only message claiming that users can get $50 if they use an attached code when making an iTunes purchase.

Bogus File Attachment Virus-Laden

Unlike many email scams, there are no links or images in the message.

Instead, the problem is the attached zip file. It contains several executable files that (once launched) will install other malicious software that awaits further instructions from a remote server. The malware is listed as Mal/BredoZP-B and appears to make the computer remotely accessible to hackers.

While the full details aren't known, it appears the malware may be able to pass on details such as passwords, slow down a computer, or delete files. It's not yet known if the malware is a virus that attempts to spread to other computers. (Source:

Users whose computers are infected should be able to remove it using most security software that has had the latest updates applied.

The German security blog Eleven has examined the remote server and found details of some of the targeted emails addresses. Around half are US addresses, with another 10 per cent in the United Kingdom. That's been taken as a sign that the attack is deliberately timed to take advantage of Black Friday. However, the bogus emails make no mention of Black Friday. (Source:

Holiday Scams Gearing Up

Such attacks are almost expected at holiday times, simply because it's easier to predict how computer users will behave. In this case, hackers know it's likely that users will be interested in emails claiming to involve special offers and discounts.

The safest defense against such tactics is to be wary about opening any attachments, even those appearing to come from trusted sources.

| Tags:
Rate this article: 
No votes yet