Spam on Apple’s iPhone Spreads in Latin America
According to Websense Security Labs' ThreatSeeker Network, a new spam campaign that is using social engineering is concentrating on the clamor over the upcoming launch of Apple's 3G iPhone in July 2008 in Latin America. TechTree published this in news on June 24, 2008.
Websense admonishes that the spam mails are spreading quickly as they encourage downloading an alleged presentation of the iPhone from a URL, http://220.127.116.11/.
In the process, an unwary user who clicks the link in the message hopes either to view the pledged presentation or to collect more information. However, neither happens and the user ends up pulling down an innocent-sounding Trojan, "Presentacion.mov.exe" from the wild. The trick is rather vulgar that could snare even the most inquisitive geeks, commented the researchers at Websense.
Meanwhile, Presentacion.mov.exe is a kind of bot that links to an IRC server through the 6667/TCP port. The binary payload caused with the Trojan adds a registry called "SystemMigration" that ensures the malware's activation at every startup. In addition, it creates a file called WinMedia.exe in Windows 2003 and XP.
Further, an analysis of the latest attack trends by the researchers at Websense reveals that cyber criminals are evolving their techniques rapidly and efficiently so that they can not only escape detection but also steal data from recipients of their spam. Therefore, according to Websense, it is vital for individuals/organizations to recognize attackers' changing techniques and to realize that they are using targeted attacks.
The researchers at Websense also disclosed that given the popularity and increasing use of the branded Macintosh PCs and iPhones, attackers are better placed to launch across-the-platform Web attacks. These attacks identify the operating software in the product and subsequently deliver malicious code specific to the operating system rather than launching just browser-based attacks. Operating systems being targeted include Mac OS X, Windows, and iPhones.
Also, with the growing adoption of iPhones and Macs as vectors for across-the-platform Web attacks, groups of people with special interests and using the 3G iPhone information are being targeted with spam. These interest groups could be of certain wealth bracket, age group, or people with unique purchasing habits.
Related article: Spam Scam Bags a Scottish Connection
» SPAMfighter News - 10-07-2008