The Civil Guard, like the National Police, carry out different campaigns on social networks thanks to which citizens can be up to date on possible scams and deceptions that are taking place over the Internet. This week we are talking about a new scam in which they posed as Social Security to get hold of our data illegally. And today we bring you a similar scam, but this time impersonating one of the largest electricity companies on the market: Endesa.
On this occasion, hackers have started to send thousands of emails to users in Spain posing as this electricity company. In these emails, which are clearly “phishing”, the user is informed that his last invoice is already available, and he is invited to download it to check the expense he has had in the last month. Of course, this is not real.
If you download the invoice that is attached in the mail, you will find a compressed file, in ZIP format, within which is the supposed invoice. The problem is that inside the ZIP file there is no PDF invoice, but an installation MSI file, which will install a dangerous virus on your computer that will allow hackers to control your computer completely.
What to do if you have received this email
If you’ve received the email in your inbox, but haven’t opened it or downloaded anything, then you don’t have to worry. Just delete the email from your inbox and you’re done. If you have received it, and you have downloaded the ZIP file that is attached, nothing happens either. You will simply have to delete the file from your computer and forget about the problem. But, if you have run the virus, then you do have a problem.
Although they have not given many details about the type of virus it is, or what it does to infected computers, it is certainly not good news. What you should do in this case is, first of all, disconnect the computer from the Internet to cut off communication with the hackers. Immediately afterwards you will have to analyze it completely with an antivirus to detect, and eliminate, the threat that is on the PC.
And, for our part, we recommend backing up the most important data on the computer and formatting Windows to completely remove all traces of the computer.
Of course, you will also have to collect all the evidence (mail, attached file, etc.) to file a complaint with the National Police or the Civil Guard and record that you have been a victim of this computer attack. This, although many do not, can save you a lot of trouble in the future (for example, if your identity is stolen or your bank details have been stolen).
Civil Guard
@Civil Guard
⚠️#AVISO‼️ #phishing campaign detected impersonating @Endesa with the excuse that you download your invoice attached to the email as a compressed file. #NoPiques, it is actually an executable file that contains malicious code #malware👇🏻
🔗https://t.co/t3ltDqjGxd https://t.co/uAywfidc3G
May 08, 2023 • 21:00
