Yesterday I received this email:
The email address looked convincing enough. Fedex.com is the real website for FedEx. Day-definite is a legitimate shipping service FedEx provides. I find it a bit odd that a customer service email would come from an email address named after a shipping method, however.
The next red flag that went up was the zip file. FedEx would never send zip files, especially if it actually was just an invoice. A further inspection of the zip file revealed there was a executable file within it. I run a mac OS so it’s not as if an .exe file would have even ran on my computer. Many of these phishing attempts are targeted at windows users, but I still wouldn’t go around clicking odd attachments in emails myself.
I googled the subject of the email and found a very similar fishing attempt that went around from UPS a few years ago. I couldn’t find anything too recent however, so I assume this is a fairly new round of attacks. If you were to click the attachment, the executable file would appear on your desktop with a microsoft word icon, to trick you into clicking it.
I’m still curious how they were able to get an email address from the real FedEx domain though.