Viruses/Worms News

Christmas malware emails on the prowl

Monday, December 1, 2008

Emails containing a link for an animated holiday card are an early present from malware attackers.

The attack comes from a seemingly innocent picture of an animated Christmas scene from postcards.org that will link people to the malicious file postcard.exe hosted on various servers, ComputerWeekly.com reports.

If a user clicks on the link, it gives the hacker control of the infected computer through a back door and access to various resources. During the installation process of the executable file, an image called xmas.jpeg is displayed in an effort to distract users, according to Websense Labs.

Websense claims this is the first piece of holiday malware and urges people to never click on a link within an email. The security advisor also warns of enticing shopping offers, festive attachments and holiday videos.

While the holiday season usually sees high activity in email fraud, a recent report from Dark Reading suggests there will be a sharp rise in the number of phishing attacks this year.

According to Google, approximately 77 percent of people plan to do more than half of their holiday shopping online.ADNFCR-1765-ID-18905201-ADNFCR

Related News:

Age-old trick with brand-new target - 1.18.2010
Cyber criminals have turned to a scam from the early days of the internet to target the growing smartphone market: Trojan phone dialers.

Report: 'At least 34' firms attacked at the same time as Google - 1.15.2010
The Washington Post asserts that many U.S. companies were targeted in the same network security and email breach that affected Google and provoked the company's highly publicized spat with the Chinese government.

Gumblar botnet builder resurfaces with a vengeance - 1.7.2010
Though security researchers had believed it to be more or less dormant, the Gumblar malware came storming back into prominence at the turn of the decade, performing what Softpedia calls a "mass injection attack" on computers and websites around the world.

Symantec endpoint protection suffers from updating issue - 1.7.2010
As 2009 turned into 2010, users of Symantec's Endpoint Protection Manager ran into trouble with updates for the program, as any patches released after the end of 2009 were misidentified as being out-of-date.

Experts laud heuristic detection as necessary backup to signature-based solutions - 1.6.2010
Anti-virus programming experts say that behavioral or heuristic detection of malware will become increasingly important to safeguarding computer systems, as modern malware becomes more and more difficult to detect using traditional methods.
View Related Resources
Or
Watch an Online Demo
Or
Have us call you now