Bogus e-tickets used to snare KLM airline passengers

Expanding campaign

Passengers flying with Dutch carrier KLM have become the latest targets of a bogus but convincing e-ticket ruse that tries to persuade email users to click on a malicious attachment.

The form is really another type of notification spam, which has numerous examples going back at least a decade, with the two best known examples being a flood of bogus bank emails and UPS and Fedex tracking messages that are still in evidence today.

According to security firm Websense, this example is visually sophisticated enough that it might fool unwary passengers planning to fly with the airline in the near future.

The image used is an accurate facsimile of a real e-ticket bar the itinerary which is the mechanism for tricking potential victims into clicking on the attachment. That comes with a Trojan payload identical to ones used in bogus campaigns hijacking the Microsoft and Telstra brands for much the same purpose.

Websense said it had intercepted 850,000 emails on 17 September alone which will constitute a small fraction of the true number being sent.

E-tickets are an obvious ploy for the malware-peddlers and perhaps the commonest example in the last year has been a campaign targeting US carriers, Delta, American and US Airways.

The main innovation of these has been their visual sophistication. Expect more to come.

Join the newsletter!


Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.
Have an opinion on security? Want to have your articles published on CSO? Please contact CSO Content Manager for our guidelines.
Show Comments

Featured Whitepapers

Editor's Recommendations

Solution Centres

Stories by John E Dunn

Latest Videos

More videos

Blog Posts