Storm Trojan feeds on Independence Day
Print storyHeavy spam squalls herald malware blitz
Posted in Security, 4th July 2007 14:16 GMT
Free whitepaper – The starter PKI program
Hackers have launched a malware blitz that poses as a 4 July greeting card.
Malicious emails, distributed worldwide, claim prospective victims have been sent an email greeting card, which they can view by clicking a link online. Varied subject lines based on US Independence Day are used to bait the ruse.
Users duped into clicking on the link within the infected email are taken to compromised sites hosting exploits that attempt to load a copy of the Storm Trojan onto vulnerable Windows PCs. The latest spam campaign is being launched from compromised machines, which have been turned into malware spewing spam bots.
The Storm Trojan, which first appeared in January 2007, uses a variety of eye-catching fake headlines to tricks users into visiting maliciously-constructed websites, a tactic that proved depressingly effective and has made the malware strain a major problem over recent months.
As before, users are advised to maintain up to date security software and avoid the temptation to visit links sent in unsolicited emails. ®
Free whitepaper – Securing your Microsoft Internet Information Services (MS IIS) web server
The best practices guide for application security
Avoiding 7 common mistakes of IT security compliance
The starter PKI program
Airport insecurity: the case of lost laptops
The mandate for application security
Google cloud told to encrypt itself
Buggy 'smart meters' open door to power-grid botnet
Chinese firm hits back at cyberspy claims
BlockMaster SafeStick hardware-encrypted USB drive