I was expecting a package from a small retailer and foolisly clicked on the attachment in a scam email that appeared to be from FedEx. A .js file was saved on my system, which I deleted. I'm assuming this is a windows virus, but should I be concerned since I did double click on the attachment? Nothing seemed to happen but the now deleted .js file was saved.
I've never seen one of these fake FedEx scams that involved Mac malware, and I'm not aware of a way that a .js file could be used to infect your Mac. You should be fine.
Just keep in mind in the future that you should never open an attached file like that. If there actually were a problem with the delivery of your package and FedEx were alerting you, they wouldn't ask you to open some file. They'd just put the info in the e-mail.
Thanks Thomas. This is what I suspected. I knew better than to click on the attachment, but my anticipation of receiving a special and expected package that day overcame my better judgment. Good warning to others, I guess. With the holidays upon us, I'm sure the phishers know many of us will be expecting important packages.
Yeah, those scams can be very convincing. I myself clicked in a link on one once, when I was expecting a package that was a day past its expected delivery date, and I work in computer security! Fortunately, I had the presence of mind to avoid entering any personal information on the page I landed on.
FedEx email scam: effect of opening the .zip or .js attachment?
