Crafty DVD email scam hijacks MailChimp account to deliver malicious code

Posted by Daniel McShanag on 20 September 2017 15:25:28 AEST

Look out today for a sophisticated DVD phishing scam using a compromised MailChimp account to deliver malicious code. The email from ‘DVDs Manager’ is framed as an ’Order confirmation.’

The email states “Thank you for your order…we’re getting your order ready to be shipped. We will notify you when it has been sent” with a link for curious email users to click to ‘View your order.’

The link is to a benign .docx file hosted on MailChimp. The .docx file contains 2 x OLE objects, both of which are CDF documents and can be opened in Microsoft Word or Excel.

The CDF documents themselves contain malicious macros, which are presumed to download a remote executable. With this attack, the crafty cybercriminals have tried to bypass content scanners by linking to a benign file (docx files cannot contain code), and by hiding the macro code in the embedded objects within the document itself.

MailGuard urges Australians to hesitate before clicking any type of attachment or link in an email if they’re uncertain of its legitimacy.

For a few dollars per staff member per month, add MailGuard's cloud-based email and web security to your business security. You’ll significantly reduce the risk of new variants of malicious email from entering your network.

Keep Informed with Weekly Updates


^ Back to Top

Topics: Malware email scam Cybersecurity cybercrime Survivingcybercrime cybercrime statistics hoax email brandjacking Australian brands

Back to Blog


Something Powerful

Tell The Reader More

The headline and subheader tells us what you're offering, and the form header closes the deal. Over here you can explain why your offer is so great it's worth filling out a form for.


  • Bullets are great
  • For spelling out benefits and
  • Turning visitors into leads.

Recent Posts

Posts by Topic

see all