The Avangate Critical Response Team identified earlier today bogus purchase confirmation emails with Avangate’s name on it, with a link to malware. First of all, Do NOT click any links within that email.
The malware message confirms a credit card charge and contains a link (false download PDF invoice link) to a malicious content (virus) that automatically installs on the machine.
Obviously, it is not sent by Avangate or any of Avangate’s partners– see example of the fraudulent email below.
Users who received these emails are NOT necessary Avangate shoppers, so if you have it in your inbox, please immediately delete it and certainly do not click on the PDF link. The message should be found as infected by the majority of antiviruses.
How to figure out whether you received a malware message in Avangate’s name or not?
- Always look at the sender’s email and name. Emails coming from Avangate are sent from @avangate.com domains
- Notifications sent by Avangate do not address multiple recipients
- We always address our shoppers with their name and not generically with “Dear client”
- The Avangate order number has 7 or 8 digits (Order reference number: xxxxxxxx) and the malware email had only 4 (Order reference number: #1456)
- We always write our name “Avangate” never “AvanGate” (come on…)
- The PDF invoices we send are attached to the email and not as a link to download
MALWARE Message
Avangate is focused primarily on the shopper security and integrity of data (Avangate is PCI DSS Level 1 Certified) and the Avangate Critical Response Team has taken all the necessary measures to bring down the host(s) of the malware and to announce and offer support to those that have been receiving this email.
Will keep you posted. Follow our twitter stream as well for faster updates.
Please comment below if you need more details or advice on this issue.
The Avangate Team