Miscreants have booted a World Cup-themed email malware attack onto the web, taking advantage of existing material on the tournament.

Booby-trapped emails are doing the rounds, posing as messages from African Safari organiser Greenlife. The emails contain an attached PDF file claiming to provide a guide to the first African edition of football's most prestigious tournament.

Hackers behind the attack have taken Greenlife's genuine guide (available on its website) and inserted exploit code instead of content related to this June's tournament and travel in South Africa.

The poisoned version of the guide was sent to an unspecified "major international organisation", email filtering outfit MessageLabs reports. The Symantec-owned hosted security operation adds that successful execution of the attack drops a rootlet and a backdoor Trojan on compromised machines, as explained in a detailed write-up here. ®

Related stories

• Currys pitches World Cup cash back pact (30 April 2010)
• Adobe mulls changes to close hole in PDF apps (7 April 2010)
• PDF security hole opens can of worms (6 April 2010)
• CanSecWest iPhone, IE, Firefox, Safari get stomped at hacker contest (25 March 2010)
• ITV HD World Cup matches to be shown on Sky, Virgin (15 March 2010)
• It's official: Adobe Reader is world's most-exploited app (9 March 2010)
• FA launches security probe after England team bugged (9 March 2010)
• Patchy Windows patching leaves users insecure (7 March 2010)
• Researcher spies new Adobe code execution bug (18 February 2010)
• Adobe apologizes for festering Flash crash bug (9 February 2010)
• Comment Dear Adobe: It's time for security rehab (5 February 2010)
• Poisoned PDF pill used to attack US military contractors (18 January 2010)
• No World Cup anthem for England football heroes (15 January 2010)
• Critical Adobe updates overshadow MS Patch Tuesday (13 January 2010)
• Adobe Reader vuln hit with unusually advanced attack (4 January 2010)
• Crooks pitch World Cup scams after group draw (9 December 2009)