Trojan downloader uses Zidane lure
Print storyA different kind of viral email
Posted in Anti-Virus, 17th July 2006 13:28 GMT
Free whitepaper – Securing your Microsoft Internet Information Services (MS IIS) web server
Nefarious virus writers are using continued interest in Zinedine Zidane's infamous headbutt in the World Cup final to distribute malware via a malicious website (screen shot here) that poses as an official FIFA World Cup 2006 website.
Surfers straying on the site are exposed to a Trojan horse downloader, which uses Windows exploits in a bid to install malware on vulnerable PCs. If successful, additional malware payloads are downloaded on to victimised machines.
According to web security firm WebSense, the US-based site uses the underground "Web Attacker" toolkit, a malware package available from a Russian website at anywhere between $20 and $300.
The appearance of the site coincides with the continued circulation of humourous emails satirising Zidane's headbutt outrage.
The latest hacker attack is a "viral email" of a very different type, that illustrates, once again, how hackers frequently look to topical events in order to propel the distribution of malign code. ®
Free whitepaper – Avoiding 7 common mistakes of IT security compliance
Airport insecurity: the case of lost laptops
Jump start your Application Security initiatives
Reducing messaging and web security costs with managed services
Avoiding 7 common mistakes of IT security compliance
Extended Validation SSL Certificates
Feds: Hospital hacker's 'massive' DDoS averted
Buggy 'smart meters' open door to power-grid botnet
Microsoft knew of nasty IE bug a year before attacks
BlockMaster SafeStick hardware-encrypted USB drive