MALWARE PHISH/A

Hello kimmo,

the description in the analysis for Mal/Phish-A is quite clear - it's an attempt to trick you into giving away credentials, bank account or credit card details and similar confidential information. You'll find related articles on nakedsecurity..  

It is a real threat if you fall for it and fill out the form (in case of e.g. webmail login credentials the compromised account is used to disseminate more SPAM, phishing attacks and malware - using a real authenticated account increases the chance that it can evade some anti-spam measures). To get rid of it simply delete it. Note that reputable companies and institutions never send you such forms by mail. Sometimes the mails contain just a link which allegedly takes you to the fake sender's login page and the page might look genuine (in fact these pages are often cleverly built and load most parts from the original site - except for e.g. the login/submit button). Thus you should never use the links contained in an email (neither directly by clicking on them nor by copy/paste or retyping) but only access "sensitive" sites and pages using a well-known URL.

Christian

I encounter a similar probelm where Sophos identifies several threats (MAL/PHISH-A) and seems for the moment to be unable to deal with. I deleted some of my email (junk,spam), some of the threats were gone and then they are back.. As I am not an IT person it seems difficult to identify where the corrupted files might be. The path shows as

/Users/(My username)/Library/Mail/IMAP-emailadress..pmbox/Attachments/303326/2/fulldetails.htm

Not sure whether I turn blind but do not know what else to do. Any help?

thanks,

AR