A new phishing campaign is taking advantage of consumers at a time when many are booking summer plans. Researchers at Heimdal Security discovered spam emails disguised as Delta Airlines receipts are designed to trick victims into downloading malware.
The idea is to send fake confirmation emails to consumers, who panic under the impression someone booked a ticket using their identity. To try and solve the problem, they click the email's embedded links. This redirects them to compromised websites with Word docs infected with Hancitor malware, which acts as a "bridge" for additional malware downloads.
Downloading and opening the Word docs will activate the malware and connect your PC to malicious servers. These are designed to download even more malware, which could steal sensitive information like banking data from your machine.
Read more details here.