March 13, 2010Dealing with swine flu malware outbreak
Dealing with swine flu malware outbreak
By Victor Ng | May 8, 2009
1 comments
Delicious
Digg
Email
PrintCybercriminals are again taking advantage of worldwide news events to seed their Trojans. This time, they are cashing in on the worldwide hysteria over swine flu by offering bogus swine flu survival guides, fake drugs or collecting “donations” to peddle malware and steal credit card details.
“This has happened with every single major news piece since at least 2005, ranging from the Katrina hurricane to Barack Obama's election and, of course, the bird flu alerts of 2006,” noted Guillaume Lovet, senior manager of the EMEA Threat Response Team at Fortinet Technologies.
The threats
Romana Ward of SophosLabs discovered swine flu comment spam messages urging members of a Russian pharmaceutical network to sell a cure for the disease. The network sells legitimate generic drugs. The message urges affiliates to add Oseltamivir, a generic form of Tamiflu, to their store catalog.
A similar campaign was waged during the bird flu outbreak, Ward said.
One of the more serious spam messages contains a malicious PDF file that purports to provide information about the swine flu. When users access the “Swine influenza frequently asked questions.pdf” file, malcode within the PDF tries to drop another piece of malware -- Infostealer or Trojan.Bloodhound.6 -- onto the users’ system.
If a victim opens the file, their machine is immediately infected with a Trojan, which tries to steal sensitive data, said Kevin Haley, director of security response at Symantec.
This social engineering trick is not only used in pure executable Trojan distribution campaigns (a la "click me"), but also in Search Engine Optimization (SEO) attacks, said Fortinet’s Lovet.
Add comment
Related Articles
Related Articles
Watch out for these 10 security speed bumps
Pointers for getting a handle on Network access control:
Fortinet claims its new security appliance is 400% faster than competitors' products
Security suite for SMBs include encryption, integrated app and device control
Study: Despite confidence in client loyalty, SMBs without effective DR plans lose customers
knowledge_central_tab
Knowledge Central
Today’s businesses face multiple challenges, including the need to innovate in extremely competitive business climates, address highly dynamic regulatory and compliance challenges, speed ROI to counter shrinking IT budgets, and secure themselves against a wide barrage of new and evolving sophisticated threats.
Attacks based on vulnerabilities in websites are skyrocketing, and not many solutions are available to protect organizations against them. How do you deal with this and other key security issues today?
They say 'put pen to paper' when you hit upon an important idea or solution. So too the creative genius needs to quickly convert thoughts into discernible text and visuals before they dissipate into obscurity. Find out how NVIDIA's Quadro FX GPUs help speed up CPU-intensive applications in the creative process.
To support its focus on improving customer satisfaction through enhanced service levels, as well as meeting guidelines set down by the Monetary Authority of Macau, Tai Fung Bank has implemented a business continuity and resiliency infrastructure developed by IBM.
