Sophoslabs Detects Fresh Spam Campaign
SophosLabs the security company reports that a malevolent spam mail, which is presently circulating across the Internet, is targeting the inboxes of people all over the globe.
The company, which intercepted the e-mail, found its subject line as "Permit for retirement." Its text message, wishing the recipient a good day tells that a contract has been prepared in which paragraphs have been added which the reader desired to see as included.
Thereafter the e-mail sender (spammers) tells the recipient that its legal counselors incorporated the alterations towards the end of the message. The sender also states that if the reader agrees to fulfill all the given directions, then they (spammers) will pay for the initial shipment on Friday.
Furthermore, the e-mail writer reveals that a file has been enclosed in the e-mail which contains the laid out contract. If necessary, the recipient can send his agreement through fax as well, the writer tells.
In the meantime, the enclosed or attached file has been found as a zip archive called Contract_05_07_2010.zip.
Wrote Senior Technology Consultant Graham Cluley at Sophos on the company's blog that Sophos reported the ZIP file to be Troj/Invo-Zip, while the malicious program inside it was a Trojan namely Troj/Bredo-DL. Sophos.com published Cluley's statement on July 8, 2010.
Cluley also highlighted that there were a few other captions apart from the already mentioned 'Permit for retirement' that the spammers used in their spam campaign. These included 'Record in debit of account,' 'Contract of settlements,' 'Loan contract,' 'Rent contract,' 'Open an account' and 'Your new labour contract.'
In addition Cluley wrote that it was fascinating to find that the online crooks utilized the spelling "Labour" instead of the American "Labor." This, according to him, could give hints about the criminals' country of origin.
Lastly, security researchers from Sophos stress that users must never trust e-mails of the kind mentioned. They also advise that people must not ever respond to such e-mails and let cyber criminals to gain success in their malevolent operations. Over and above, users must maintain all security programs up-to-date on their computer systems, the researchers suggest.
» SPAMfighter News - 21-07-2010