'Bin Laden Captured' E-mail Downloads Trojan
A new e-mail attack bearing the subject "Osama Bin Laden Captured" downloads a trojan onto the computers of recipients who click on a link promising additional details, according to antivirus vendor Panda Software. The scam spam provides a prime example of social engineering, masquerading as a news bulletin that, if legitimate, would generate click-throughs from a significant number of users. The text of the e-mail:
Subject: "Osama Bin Laden Captured", Message text: "Hey, Just got this from CNN, Osama Bin Laden has been captured! Go to the link below to view the pics and to download the video if you so wish: (Internet address) "Murderous coward he is." God bless America!"The URL takes the user to a page that contains code for a .chm (Compiled HTML Help) file that is auto-executed by Internet Explorer, and in turn downloads an executable trojan. Panda identifies the trojan as small.b, a family of trojans known to leave ports open so the compromised machine can be used for spam and other pass-through activity.
Digg
Slashdot
Reddit
StumbleUpon
Delicious
Technorati
Posted by Rich Miller at 23 April 2004
in Security
|
Print this Page
| Rackspace Managed Hosting - Web Hosting - Hosting | Swishmail.com Business Email Hosting | Heart Internet web hosting |
| INetU Managed Hosting - Dedicated Servers | Windows Dedicated Servers from Server Intellect | Reseller hosting Managed dedicated server Ahosting |
| Business Web Hosting Services - webhosting.uk.com | Web Hosting - Dedicated Servers & VPS Hosting | Compare the Best Web Hosting Companies |
| Downtime alerts - free website monitoring service | ||
Advertising on Netcraft
Copyright © Netcraft Ltd 2009. All Rights Reserved.