Earlier today a client from Clifton Park called in concerning an email message they did not send.  When we connected with their desktop we discovered a new spam message disguised to look legitimate.

The email comes from Mail Delivery and shows Subsystem Delivery Status Notification (Failure)

The email contains an attachment which holds the payload.  The attachment is called Forwarded Message.html

The body of the email message is as follows, (we substituted the email address):

Note: Forwarded message is attached.

This is an automatically generated Delivery Status Notification

THIS IS A WARNING MESSAGE ONLY.

Delivery to the following recipient has been delayed:

name@domain.com

Message will be retried for 2 more day(s)

If you get a message like this, delete it.