Trend Micro Detects Spam Mail Declaring World War III
Researchers at Trend Micro, an online security firm, has cautioned about a spam mail which declares World War III. Also, the mail contains a link to fake site appearing like the news agency CNN.
Trend Micro claims that the video attached with the mail cannot be played. For playing the video, the user clicks on the link and a message pops up asking to install the ActiveX Object.
Also, the ActiveX Object is harmful malware, which the Trend Micro identified as TSPY_BANCOS.JN. TSPY_BANCOS.JN. It matches to the BANCOS variants, an information stealer that monitors the browser of the attacked computer.
The security firm warns against clicking on the link. If the user clicks on the link, he or she starts installing the banking Trojan on to the system. Trend Micro said that the Trojan looks for the moment when the user access the bank related sites. When he uses access the site, it shows the login page of the online bank and steals the user's private details.
The mail message shows that the World War III was initiated by Russia using nuclear weapons against Georgia.
Jaun Pablo Castro of Trend Micro added that using sensational news is very naturally to the hackers and they channel all their resources in creating fake and highly attractive e-mail headlines, as reported by Webuser on September 30, 2008.
Castro also said that the method of asking the user to download the ActiveX Object is a famous technique to spread malware, and this fraudulent ActiveX Object is designed for the innocent Web users to believe that they are installing something important.
The company advises the users not to click on any attached links of unsolicited mails. If any users think that he has been targeted, then he should whether the security software program are updated and a proper system scan should be conducted.
Interestingly, in July 2008, spam mail on outbreak of World War III was circulated and it was disclosed by Sophos. The July 2008 scam also carried link to dangerous Web page that infected the computer system.
Related article: Tornado Exploit Toolkit, New Aid to Website Attacks
» SPAMfighter News - 06-10-2008