Viruses/Worms News

New Waledac variant unleashed, spoofing coupons

Friday, February 27, 2009

After spending most of its time targeting spam email during specific holidays, it appears the Waledac botnet has unleashed a new variant spoofing a legitimate coupon website and hiding its tracks using IP address geolocation.

News of variant came late on Thursday with security officials saying Waledac was producing a malicious copy of the site that sells The Couponizer, an organizational product that assists consumers to store coupons, SCMagazineus.com reports. The botnet further legitimized its phishing attack by offering coupons on the fake site for stores, restaurants and companies near where the user lives.

This was done through a new social engineering feature previously not seen in other Waledac variants called IP address geolocation, which allowed the cybercriminal to determine a user's location based on his or her IP address, security officials told the news provider. The IP address is queried against a database for the location with the results incorporated into the webpage.

Waledac, which is widely considered an evolved version of the Storm botnet, had mainly focused on holiday-centered attacks prior to this by releasing spam emails with malicious links on Valentine's day and near the Christmas and Chanukah holiday.ADNFCR-1765-ID-19049741-ADNFCR

Related News:

Researchers: Malware attackers reloading for Windows 7 assaults - 11.20.2009
A report issued yesterday by computer security firm Symantec says that hackers are undoubtedly reworking their malicious software to target Windows 7 as more users switch to the latest version of Microsoft's flagship OS.

Want to secure your iPhone against intruders? There's an app for that - 11.20.2009
Cisco Systems today released a free iPhone app that will allow users to receive security updates and the latest news on web threats, as well as aggregating additional security related content for iPhone users.

Microsoft says 64-bit versions of Windows are harder to infect - 11.19.2009
Members of Microsoft's security team write that 64-bit editions of Windows are much less susceptible to malware attacks, but outside experts caution that 64-bit malware could be the next big thing in cyber crime.

Google coming down hard on malicious advertisers - 11.18.2009
Search giant Google has said that it will lay down the law where scam artists and malvertisers are concerned: Permanent bans will be the result of any fraudulent activity on the company's AdWords service.

If at first you don't succeed: Most malware protection fails first round of certification testing - 11.17.2009
A study performed by security testing and research firm ICSA Labs says that almost four out of five computer security products fail their first certification tests and need to be retooled for a second and sometimes a third attempt.
View Related Resources
Or
Watch an Online Demo
Or
Have us call you now