Christmas malware emails on the prowl
Monday, December 1, 2008
Emails containing a link for an animated holiday card are an early present from malware attackers.
The attack comes from a seemingly innocent picture of an animated Christmas scene from postcards.org that will link people to the malicious file postcard.exe hosted on various servers, ComputerWeekly.com reports.
If a user clicks on the link, it gives the hacker control of the infected computer through a back door and access to various resources. During the installation process of the executable file, an image called xmas.jpeg is displayed in an effort to distract users, according to Websense Labs.
Websense claims this is the first piece of holiday malware and urges people to never click on a link within an email. The security advisor also warns of enticing shopping offers, festive attachments and holiday videos.
While the holiday season usually sees high activity in email fraud, a recent report from Dark Reading suggests there will be a sharp rise in the number of phishing attacks this year.
According to Google, approximately 77 percent of people plan to do more than half of their holiday shopping online.
Related News:
Conficker still a threat to web security - 3.18.2010
The Conficker worm was by far the most notorious piece of malware in 2009 for several reasons. Not only did it receive media attention and infect more computers than any other strain, according to Katonda, a business technology website, it reminded web security professionals of bygone days when major epidemics were the norm.
Network security update not responsible for crashes - 2.24.2010
Reports of the so-called "blue screen of death" following the installation of the latest Microsoft security update are the result of malware, not a defect in the update.
Botnets and Chuck Norris take aim at network security - 2.22.2010
Last week, word spread of the Kneber botnet compromising more than 2,000 computers worldwide. With the start of a new week comes more malware attacks plaguing the web community. The so-called "Chuck Norris" botnet is attacking routers and DSL modems by guessing commonly used passwords.
Web security company warns of scareware's risk - 2.19.2010
The rise in scareware attacks and cyber criminal behavior in general forced DynaSis, an IT services company, to issue a warning to its users about the threat of fake anti-virus software infecting their computers on Friday.
Age-old trick with brand-new target - 1.18.2010
Cyber criminals have turned to a scam from the early days of the internet to target the growing smartphone market: Trojan phone dialers.
|
