Oh, come on...
Oh, come on, how does this make "news"?
"emails that mention you and your company" - Standard spam tactic, usually obvious because most people don't address you as Mr A User.
"claim to be official communications from the US Department of Justice." - and virtually anything that claims to be "official" via email ISN'T. How many people (who don't work in law) regularly get emails from the US Department of Justice that are genuine?
"They're phony and will attempt to install malware on your machine." - you don't say.
"The emails, which claim to reference a complaint recently filed by a business associate, invite the recipient to click on an attachment..." - Woop, Woop, Red Alert. Attachment. Invite to click Attachment. On unsolicited email. Welcome back, 1991.
"In May, security researchers from SecureWorks reported that emails purporting to come from the Better Business Bureau duped 1,400 business managers into installing a post logger on their machines." - then that's another 1400 businesses to blacklist and 1400 potential job candidates to have their CV's thrown in the bin.
"Spear phishing emails are notable for their impeccable grammar and spelling, a characteristic that distinguishes them from many of the plain vanilla phishing scams out there." - Oh wow. They can finally spell. Yes, the bad spelling was always a give away in the past but why do we make a whole new type of scam just because they learn to use a spellchecker?
"Other recent spear phishing campaigns have masqueraded as emails from the Federal Trade Commission." - No. Really. Another institution that probably NEVER sends email to anyone except for internal use. And certainly doesn't send it to Joe Bloggs who owns a company. And certainly not uninvited or anything "important".
"According to Websense, none of the major anti-virus companies detect the Trojan included in the fake Justice Department emails. That's likely to change in the next 24 hours, if it hasn't already."
Oh, come on, seriously. Why is this news? Idiots fall for quite obvious scam because of poor training, poor computer security, all because it was spelled correctly.
If you're gonna do this sort of article, can we at least name the 1400 "victims" publically so that we can all raspberry at them.