How ironic - malware distributors are using the vulnerabilities inherent in IE (and other browsers) to distribute malware purporting to be an Internet Explorer update!
The spammers did a few things to make the message appear to be legitimately from Microsoft, spoofing a Microsoft from address, and copy-pasting the MSN text into the bottom. Of course, [...]
After distributing outlandish headlines for months, malware distributors have taken the next logical step and are starting to package them together in email newsletters, more specifically, pretending to be “CNN Daily Top 10″ headline email newsletters. Here is a sample email:
Each enticing headline in the message links to a malware site, not to CNN, [...]
I know some people get excited about the prospect of a new video of Angelina Jolie (with or without her new twins), but it’s not recommended to download one that ends in “.exe” since it’s most likely malware
Building on the trend from the past few months of using standard MSN messages (links and [...]
Something about the “rockets red glare” of July 4th must have gotten the Storm Wormers in the mood for aggressive action, and the next outbreak has been a faux invasion of Iran, with the following malware web site:
Based on a quick scan of the iran_occupation.exe malware file by VirusTotal, the results show that only 14 [...]
Is there any holiday spammers and malware writers won’t celebrate? This just in from our detection center - blended threat emails along a July 4 Independence Day theme, with Subjects like “Happy July 4″ and content… well see for yourself in the example below:
Don’t click on links in emails like this, folks… guaranteed to turn [...]
Commtouch detection team informed me that a new blended threat outbreak of Chinese Earthquake messages began earlier today, with a similar modus operandi to the previous outbreak, the main difference being that the URL hyperlinks within the messages are to zombie IP addresses (the X’s in the sample below), rather than fast flux domains in [...]
For some people, hearing about China digging itself out of one of the worst earthquakes in recent memory inspires them to do good works, donate money, join the Peace Corps…. For spammers it is merely inspiration for the next wave of social engineering to attempt to recruit a new army of zombies. Building on human [...]
Commtouch detection team identified a new email-borne malware outbreak yesterday, another in the “love” themed attacks. It is a blended threat, with simple love-oriented subjects, and within the body of the email message a hyperlink to a site that downloads a malware file - a Storm worm variant known as Zhelatin or Nuwar. Our lab [...]
I just got back from a long, hot but very enjoyable day trip with the Israeli team to the Sea of Galilee, so I’ll keep this brief (and will post the pics from the trip tomorrow). Commtouch spam analysts informed me about a new outbreak of “love” malware which began around 18:00 UK time yesterday, [...]
Similar to earlier holiday messages, malware distributors are taking advantage of the atmosphere of April Fools’ Day to send “jokes” linking to malware sites. The messages are short text messages, with a hyperlink to a web site hosted at an IP address (usually indicative of a zombie outbreak).
Subject lines include:
All Fools’ Day
April Fools’ Day
Doh! All’s [...]
