Cybercriminals launched big spam campaign using spoofed US-CERT e-mail address. The campaign targets „a large number of private sector organisations as well as federal, state, and local governments“. US-CERT informs that it has problems with receiving e-mails.
The fake e-mails have an attached .ZIP file that contain executable „US-CERT Operation Ceneter Reports.eml.exe“. The e-mail is entitled „Phishing incident report“ and contains a phone number. It is sent from soc@us-cert.gov, but US-CERT warns that other e-mail addresses from us-cert.gov domain may be used also.

Source: SC Magazine
11.01.2012