Spammers Disseminating Malware in Guise of Information about Air France Crash
Spammers are still exploiting people's curiosity of getting more information about Air France tragedy by sending fake messages that promote the Canadian pharmacy products, as reported by SCMAGAZINE on June 17, 2009.
The Airbus jet was carrying 228 passengers from Rio de Janiero to Paris on the morning of June 1, 2009 when it got disappeared.
According to news reports, spammers pushed up a new e-mail campaign that contained several attractive headlines such as 'Another plane crushed', 'Last seconds of plane' and 'A-330 blackbox record' to encourage people to open these e-mails. When a user opens one of these e-mails, he encounters messages that advertise discounted drugs such as Tamiflue and Viagra.
Francois Paget, Senior Virus Research Engineer, McAfee, said that spammers, who were using such a tragic and distressing incident to promote their shady businesses, were categorized as disrespectful, as reported by SCMAGAZINE on June 12, 2009.
Security analyst at Websense also issued an alert against an e-mail malware dissemination campaign that concentrated on providing legitimate news updates on the mishap.
It has been found that these spam messages are stemming from Portugal and contained a link to video file. As the user clicks on the video link, the installation process of an executable file known as Video_AirFrance_447.com starts. This file further plants password stealing trojans such as variant of Win32/Spy.Banker.QRP, Trojan-Banker.Win32.Agent!IK and Trojan-Banker.Win32.Agent on the infected system.
Thus, security experts at McAfee and Websense have advised computer users to remain patient and extremely vigilant in order to avoid entering of malware in their computers. They also recommended people to suppress their inquisitiveness of getting more information about the crashed plane. Spammers, hackers and malware distributors have strong faith that the mysterious disappearance of the plane instills people to search for methods of finding more information about it. Cyber crooks are keenly waiting to prey on this enthusiasm of curious people.
Finally, security experts have highlighted that cyber criminals are unflinching in their task of taking advantage of every disaster to deceive users into opening attachments and visiting sites. A tremendous increase in spam and malware infections after such unhappy events has become a norm. Similarly, Hurricane Katrina in the US during August 2005 and the December 2004 Tsunami in Southeast Asia were followed by a massive surge in junk e-mails and infections.
Related article: Spammers Continue their Campaigns Successfully
» SPAMfighter News - 22-06-2009