High-ranking business executives across the country have received e-mail messages in recent weeks that appear to be official subpoenas from the United States District Court in San Diego. The messages sent to CEOs are specially crafted to appear legitimate, a tactic called "spear-phishing." Each includes the executive’s name, company and phone number, and commands the recipient to appear before a grand jury in a civil case.
A link embedded in the message purports to offer a copy of the entire subpoena. But a recipient who tries to view the document is told to download a plug-in in order to read the subpoena. But that software secretly records keystrokes and sends the data to a remote computer over the Internet. This lets the criminals capture passwords and other personal or corporate information.
Although they end with the same letters, the domains used in this scam are actually different from and not connected with the uscourts.com Web site, which offers access to court records in some jurisdictions.
Be safe! Never click a link in an e-mail from someone you do not know.
Link to recent New York Times article.