Cyber criminals are spreading malware using spam messages masquerading as invoices for tickets to a Peter Pan pantomime.
The Bournemouth Pavilion (BH) reported the scam in a public alert on its homepage, warning potential theatre goers that the spam campaign has been running since at least 7:30am on 9 September.
"At approximately 7.30 this morning BH Live started to receive a high volume of calls from members of the public in connection with an email purporting to come from BH Live Tickets. The email contains attachment(s) and hyperlinks relating to a booking for Peter Pan," read the advisory. "The emails are not genuine and do not originate from BH Live."
The theatre said there is no evidence that the criminals have managed to breach its internal systems, but recommended that people who receive the messages take a number of protective measures.
"BH Live's Information Security teams together with information technology professionals and suppliers have investigated the matter and confirm that its internal systems have not been breached and that the emails were sent from known spam IP addresses," read the advisory.
"The public is advised to delete these emails, to not open any attachments or links; ensure they are running the most up-to-date security products and that the operating system has been updated to the latest version. It is recommended that anyone receiving these emails update their passwords over the coming days."
The malware used in the spam emails is currently unknown, though their "invoice" subject line indicates that they are designed to harvest financial information.
Spam is an ongoing issue facing businesses and is a popular malware-distribution tool used by cyber criminals. The BH operation is one of many spam campaigns uncovered spreading a variety of different malware tools in recent weeks.
Researchers from security firm Zscaler reported that the hacker gang behind the notorious Gameover Zeus campaign has returned to action and is attempting to spread a less complex version of the original malware on 2 September.
And, yep, it'll run Android rather than RiscOS
US engineering giant's cost-cutting outsourcing plan is on the rocks, according to insiders
HP Envy X2 laptop only affordable if you've got loadsamoney
Counterfeit code-signing certificates enabling hackers to hide malware being sold by cyber criminals
Certificates can be used as part of layered obfuscation to evade detection by anti-virus software