How ironic - malware distributors are using the vulnerabilities inherent in IE (and other browsers) to distribute malware purporting to be an Internet Explorer update!
The spammers did a few things to make the message appear to be legitimately from Microsoft, spoofing a Microsoft from address, and copy-pasting the MSN text into the bottom. Of course, [...]
I may have disappeared for the last couple weeks, but the spam and malware did not, so this post is a roundup of various outbreaks that I wasn’t able to report on at the moment they happened. In parentheses is the date I would have (should’ve could’ve) reported on these items had I been truly [...]
I know some people get excited about the prospect of a new video of Angelina Jolie (with or without her new twins), but it’s not recommended to download one that ends in “.exe” since it’s most likely malware
Building on the trend from the past few months of using standard MSN messages (links and [...]
Something about the “rockets red glare” of July 4th must have gotten the Storm Wormers in the mood for aggressive action, and the next outbreak has been a faux invasion of Iran, with the following malware web site:
Based on a quick scan of the iran_occupation.exe malware file by VirusTotal, the results show that only 14 [...]
Is there any holiday spammers and malware writers won’t celebrate? This just in from our detection center - blended threat emails along a July 4 Independence Day theme, with Subjects like “Happy July 4″ and content… well see for yourself in the example below:
Don’t click on links in emails like this, folks… guaranteed to turn [...]
Commtouch detection team informed me that a new blended threat outbreak of Chinese Earthquake messages began earlier today, with a similar modus operandi to the previous outbreak, the main difference being that the URL hyperlinks within the messages are to zombie IP addresses (the X’s in the sample below), rather than fast flux domains in [...]
Commtouch detection team identified a new email-borne malware outbreak yesterday, another in the “love” themed attacks. It is a blended threat, with simple love-oriented subjects, and within the body of the email message a hyperlink to a site that downloads a malware file - a Storm worm variant known as Zhelatin or Nuwar. Our lab [...]
Blogspot has been a popular hosting site for spammers, and even malware distributors, but Arik from the detection team informs me that we are now starting to see outbreaks using hyperlinks to a different, less popular blog site, known as blogdrive.
This particular outbreak uses misspelled pornographic subject lines of around four words each; it seems [...]
Spammers and spyware operators are trying the luck of the Irish to get some more unsuspecting folks into their web. Here’s the latest St. Patty’s day ecard spam outbreak shared with me by our global detection center. Click the link and if you are based in the US you will have some spyware downloaded to [...]
The Commtouch Detection Center just sent me a sample of the latest blended threat trying to continue to spread Storm around, being sent out by zombies:
Subject: Your ecard horoscope is waiting!
Body: Come get your personal funny postcard. You’ll bust a gut!
Following this poetic message is a hyperlink to an IP address
which shows the image [...]
