Canada Post says the email is a fake and likely contains a virus or other malware. Recipients are being strongly cautioned against opening the attachment.

Additionally, Canada Post said that if a tracking number is provided in the email, you can check separately at the agency’s website. If it comes up as invalid, then the tracking number is a fake and the email should be deleted.

Read more at News1130

A piece of malicious software unwittingly shared over a peer-to-peer network in January was the key tool in what security researchers are saying was the first known attempt to create a botnet of Mac computers.

Researchers at Symantec say the Trojan, called OSX.Iservice, hid itself in pirated versions of the Apple application iWork ’09 and the Mac version of Adobe Photoshop CS4 that were shared on a popular peer-to-peer bittorrent network.

SecureMac has released a tool to remove the Trojan, and can be downloaded from here.

Via: cbc.ca

The trojan configures and runs a rogue DHCP daemon on the infected host. Other devices on the same LAN are misled into using name servers settings provided by the trojan DHCP daemon for DNS lookups instead of using the origional configured name servers.

Devices on the network are then sent to fraudulent websites that can be more difficult to identify as imposters since the DNS lookups appear correct.

This is a more advanced attack of a well known vector of attacking a systems hosts file, but by being system agnostic and using the familiar DNS protocol, it is much more effective.

More details can be found at SANS