If you get email with subject lines such as "Your Order No 129589 – Warner Music Inc." or "Your Order No 489889 – Cell Phone Inc." -- delete them.
It's a scam, warns Phil Hay of the M86 security lab.
In a blog post, he warns that the attached .pdf file is loaded with malicious code:
hxxp://kawabungashop.ru/flash/1.phpThe 1.php file is an executable downloader (VirusTotal Report). Another piece of malware is then downloaded and installed (VirusTotal Report), which is a spambot that proceeds to spam further copies of the .pdf file.
The blog post includes screen shots you'll want to beware of.
Get your morning news fix with the daily Salted Hash e-newsletter!