Bit of a strange title I think. It could well be you that is hacked and the malware is using your addressbook to send out false messages.

Also check the mail address of the sender (not what is shown above) to see what the real address is where the mail comes from. It could be just spoofing and also then Stern is not hacked at all.

Not bashing on you and thank you for the info, but just change the title untill its clear what is going on.

Thanks for the heads up

I hear those emails can suck 6k - 9k out of your bank account and send you a mostly working pinball machine!

how so??

and even if he's incorrect, what's the harm in giving folks a head's up? more of a strange response, if you ask me.

Man if it was titled "We didn't forget you - Stern code update for your game"

I think all of us would be taken down within the day. I'd probably open it 10 times hoping for long lost code updates that I never got.

Wow the Stern fanboys are out with the first post spin. To some they can truly do no wrong.

Deploy Stern Army!

That sucks. Glad Stern is on it.

LTG : )

I had it too..

But not from Patrick powers but from another person with a weird name

Actually, I am in the "will not buy Stern again ever and sold all my Sterns because I get sick of them" camp, but I know how confusing these things can be with hacking and virusses and stuff.

@capguntrooper: thanks for your answer back.

More accurate title would be "If you use Windows, don't open any emails from Stern!"

Fair enough, with text it's easy to imply intent. I can accept I made assumptions.

Where's the (malware) code?

I would assume the "danheretic" link included in the email leads to an infected website, since it's not a link to the Stern website.

Stern has never sent me any invoice emails so why the F would someone open one if they did? That's not normal people!! Come on use your heads! Think and read before you click! Sheeesh!!!!!!!

Looks like a (likely-infected) Word document.

vt (resized).png
vt2 (resized).png

just received this

Screen Shot 2017-09-25 at 2.57.11 PM (resized).png

yeah, typical 'scraping the address book' infection somewhere. So now the spammers will be sending all kinds of emails with the from lines forged to all their contacts.

JT is hiding out in England with some bird named Melissa?

Visit https://haveibeenpwned.com/ and put in Patrick's address. Looks like this is from the Onliner Spambot breach.
https://www.troyhunt.com/inside-the-massive-711-million-record-onliner-spambot-dump

I've gotten this one from other areas of business as well

They must have been hacked. I got an email saying that they are dropping the prices by $500 on the next game.

They must have been hacked. I got an email from them...

This is getting serious, I just got one too!

Do NOT open that link!!!!!!!!!!!!!!

zzzzzzvirus (resized).jpg

wow, and it's even an invoice. So does that mean he's charging for said slumber party?

I hate to see the price of admission..........

*cringe* Man you guys... lol....

Got his pricing info from never-neverland I bet.

And pinside keeps on pinsidin'...

For a moment then I saw the heading "Stern Pinball Hacked" and thought someone had updated the code for Ghostbusters to fix all the bugs and complete all the Game modes... Alas Not

Is it just stern or linked to sullivan group? I bought sterns hd glass through a stern site but invoice is from sullivangroupusa.com

I received an email afterwards saying they need my card info that it was declined. Have not done so yet. Don't think they would have sent it without being paid first.. shows in my account as pending.

Screenshot_20170926-113801.jpg

That organization is not affiliated with Stern as far as I'm aware.

Not listing the actual item(s) you ordered or the order number in the email is a big clue.

I would delete it.

I plan to, i should add that i called them(contact for sullivan) directly when i placed the order because i thought it was funny, they showed the order as processed.. then i called stern who confirmed my order also and said it was shipped.

Which is why I'm not getting a good feeling about this. Highly doubt they would have sent it if they didn't receive payment. The contact info i showed you is the same info from my original order.

Scammers would likely provide such and hope you just send your card info on a silver platter by email.. whoever would is window licker quality. Ha.

Thanks for the info.

Never send your CC number in e-mail. Just call them up and provide over the phone.

***Edit - By call them up, I mean call up whom ever you are buying from to provide payment information. Never send in an e-mail even if the company is a known company that you've dealt with. I recently did this and learned the hard way. Company I've done business with dozens of times and I sent my CC for a parts order (for a car). 2 days later the bogus charges started to happen. I was suspicion on how that happened until the owner called me and apologized because they were hacked. Handful of customers CC #'s were taken and they tracked it back to them.

No, they aren't legit.

Yeah, I kind of left that important part out of my post Editing it now...

That's not entirely true. This is a likely variant of a word macro virus. They get you to hit a link with a word document. The document comes up, and then runs the macro (if macros are not enabled, it will try to fool you into enabling it). Once the macro is running, it then jumps externally to download an executable file off a remote server (and then execute it). There are multiple variants of this exploit, but a common one was installing ransom ware. Long story short, due to the way it works; it would only infect a windows machine. MAC users would not be impacted (mac would not let word start the executable, nor would the executable run on mac).

For what it's worth. I have not clicked the link to confirm the malware variant, so I'm going by others in this post that it linked to a word file.

Don't know if it's related, but someone left a message on my company line a couple days ago saying they were calling from Stern and we owe them money on an unpaid invoice... Considering we have never ordered directly from Stern... uh ok, let me get to work paying that!

Just got one of these today.

I'm taking this cyber stuff seriously. In fact anyone sending me an invoice I will not pay it. Sorry people cant open cant pay. Perhaps the US Mail will start making money again.

I got one of these emails today as well, supposedly from Chas, telling me he paid the outstanding balance on a machine. Weird.

Are you even looking at the headers to see if they are coming from Stern mail servers?

We all know once the names/contacts are harvested, spoofing will go on for ages even after the original target is cleaned up.

Feeling like the odd man out. No emails, no calls, no chocolates. Come on Stern, love ME.

My company requires employees take a simple internet/ email security training webinar and to pass a test showing your head isn't up your azz. They periodically send spoof emails, and if you try to reply or click on the link, it logs your name and flags you to take the training again.

Agreed. These are all very likely spoofed and will continue regardless of what Stern does to secure their systems. If someone can post the full mail header we can confirm...

-Jay