Cyber criminals have recently launched a new spam email attack aimed at deceiving the clients of Bank of America. AccountDocuments.zip is an archive file that is attached to the deceptive letter supposedly sent from Andrea Talbot (Andrea.Talbot@bofa.com). Bank of America, abbreviated BoA or BofA, is not related to the people responsible for the release of the fake message, and, if you have ever found a suspicious email letter in your box, you should ascertain whether you are the intended receiver. The email containing the attachment AccountDocuments.zip does not contain any links, but it is important to bear in mind that links, as well as file attachments, should not be click on in suspect email letters.
Why have you received the AccountDocuments.zip archive?
Cyber criminals employ many techniques to get access to your computer and obtain your personal information and money. AccountDocuments.zip is a file which executes a variant of Cryptowall, which is a piece of malware encrypting different types of files on the compromised computer. As a result, the user is provided with a so-call ‘ransom’ warning, according to which, a particular amount of money has to be paid in order for the victim to regain access to his/her files.
Cryptowall is an infection aimed at compromising Windows operating systems, including Windows Vista, Windows 7, and Windows 8. AccountDocuments.zip is not the only means of infecting the computer with Cryptowall; some other spam emails are also used to spread the threat and execute the payload.
Usually, the malicious program encrypting files is automatically removed from the computer, and the only issue that has to be dealt with is the recovery of the data. The majority of data encryption-related issues are solved only if some backups are available because the code necessary for decryption is usually stored on the servers of the attackers.
The sum of money demanded may differ depending on the user’s geographical location. Moreover, the attackers demand that the money be paid in bitcoins, which are an electronic currency that is generated by connecting the machine to a special network. The machine that belongs to the network is used to solve complex equations, but, in the case of Cryptowall, the user of the victimized computer is expected to purchase bitcoins in order to pay the sum required.
In order to prevent the damage that is inflicted to the computer by AccountDocuments.zip, you should ignore the contents of the BoA spam email. The spam email should be deleted immediately; moreover, the computer should be shield from malware and spyware threats.
How do deal with BoA phishing emails?
Bank of America is aware of the fact that online schemers use the name of the institution to mislead unsuspecting users and recommend paying close attention to the contents of suspect emails. For example, it is important to ignore links that appear to be related to the bank because they may take you to a phishing website. Moreover, Bank of America declares that they will never ask you to provide your personal information by replying to the email, and you will never be asked to verify or authenticate your personal information via email. If any typo or other errors, including poor visual design, are observed, it signifies that there is something questionable about the sender and the contents of the email.
The file AccountDocuments.zip should be disregarded in order to prevent irreparable damage, and, if you have the email containing this file, delete that email straight away.