RSS Alerts

Related Links

Related Stories

  • New Trojan malware variants evade major anti-virus engines claims CommTouch
    Based on an analysis of two billion emails and internet transactions processed by its OEM anti-spam and anti-malware customers every day, CommTouch says that millions of email-borne malware such as Trojans and viruses bypassed several major anti-virus engines during the second quarter of 2009.
  • Does Web 2.0 Need Security 2.0?
    With the proliferation of Web 2.0 services, security concerns have escalated. Davey Winder investigates how infosec vendors are addressing these challenges and wonders whether security 2.0 actually exists
    Members' Content
  • File Reputation Comes of Age
    Using reputation in the security field makes users safer. Danny Bradbury takes a look at file reputation technology, and finds that if carefully managed and skillfully honed, it can be a useful addition to a security suite
    Sponsored Content
  • An injection of new ideas
    Securing IT means coping with Donald Rumsfeld’s ‘known unknowns’ – expected attacks whose nature is a surprise. Concepts from medicine, game theory and crowd sourcing may help, finds Danny Bradbury
  • US phishing attacks decline in third quarter
    The third quarter security trends report from Commtouch and its security alliance partners suggests that phishing is now on the decline, after peaking in the summer.

News

Jackson's death rocks net

30 June 2009

Never one to miss a trick, the blackhat community capitalised on the death of Michael Jackson over the weekend by seeding the web with spam and malware designed to steal email addresses and join the troubled star's fans to botnets.

Initially, attacks were limited to unsophisticated spams, which contained no web site links or scripted payloads, according to Sophos. Instead, the spammers simply offered secret information about the star's death to the recipient, and invited a response back. Sophos deduced that the scammer was simply hoping to harvest email addresses.

F-Secure saw malware that it detected as Trojan.Win32.Buzus.bjyo begin to spread on Sunday night. The malware, which was distributed through sites including photos-google.com, was delivered as a file called Michael-www.google.com.exe which, when executed, dropped IRC bots with back door functions.

Another scam involved a spam mail that invited recipients to donate to the fictitious 'Michael Jackson Organization', and promised to publish information about how much had been donated via a

group.

Still more spam suggested that Jackson was not dead at all, and included an image that was peppered with random multicoloured lines to defeat antispam scanners. Clicking on the image took Web surfers to a pharmaceutical sales site.

The volume of searches referring to the pop star's death on Friday was so great that Google's automated systems thought that its servers were under attack. "As a result, for about 25 minutes yesterday, when some people searched Google News they saw a 'We're sorry' page before finding the articles they were looking for," the company said on its blog.

 

This article is featured in:
Internet and Network Security Malware and Hardware Security

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Copyright © 2010
Elsevier Ltd. All rights reserved.
Terms & Conditions | Privacy | Website Design Working with water