Flight disaster phishing scam lands in Brazil
Print storyConmen latch onto tragedy, again
Posted in Spyware, 3rd October 2006 14:38 GMT
Free whitepaper – Securing your Apache web server with a Thawte digital certificate
Pond-dwelling scammers are seeking to exploit interest in last weekend's Brazilian airline disaster to tempt potential victims onto a site hosting a Trojan downloader.
The malware attempts to install a banking keylogger onto the PCs of potential marks. The attack, written in Portuguese, targets online banking customers in Brazil, a major centre of phishing attacks.
Scam emails contain subject lines such as "fw: as fotos do acidente do boeing da Gol!", as illustrated in an advisory by web security firm Websense.
The ruse attempts to exploit prurient interest in a disaster that killed all 155 people on-board a Boeing 737 jet that crashed into a remote stretch of Brazilian jungle.
Similar - though arguably less sophisticated attacks - followed last year's London bombing attacks, hurricane Katrina, and the Asian tsunami of 2004. No human disaster these days is complete without a topical piece of malware. The language of these malware-promoting scam emails is no longer restricted to English, as the Brazilian Gol Airlines scam shows. ®
The business case for application security
Reducing messaging and web security costs with managed services
Avoiding 7 common mistakes of IT security compliance
Server-gated cryptography
Airport insecurity: the case of lost laptops
Feds: Hospital hacker's 'massive' DDoS averted
Buggy 'smart meters' open door to power-grid botnet
Microsoft knew of nasty IE bug a year before attacks
BlockMaster SafeStick hardware-encrypted USB drive