Massive Malware Scheme Spammed

Commtouch Labs intercepted numerous phishing e-mails that it analyzed during the past many days and found that they carried web-links connecting to huge malware-laden documents. The company also found that these spam mails in an enormous scale were trickling into users' inboxes daily.

Exhibiting a caption: "Need your help!!" the malevolent e-mail campaign consists of two familiar versions. One of them involves an e-mail, which addressing the recipient tells him that the writer has got a bill he isn't familiar with, thus wonders if the reader ordered anything. Then he refers to a given web-link, actually containing malware as the bill and requests for an early reply since the amount is huge, while the payment is demanded immediately, the e-mail concludes.

Meanwhile, a different version of the e-mail describes a more disgraceful tale wherein the e-mail sender requires the recipient's assistance in recognizing an individual who evaded the traffic signal at the time of driving the former to his residence.

Specifically according to this e-mail sender, while in a party he drank excessively and became incapable of driving his motorcar so someone used it to take him home, but that person violated the traffic signal. Thereafter the writer says that right now he has the photographs of the person whom the e-mail recipient may know, which for viewing he requires clicking a web-link. Moreover, the writer requires locating the man immediately, it's written.

But, the web-link named 'Here is the photo' takes onto a site that produces one redirect connecting with the malware. Furthermore, the link's URL address isn't hard to identity as it's pretty lengthy, will connect with web-servers that host blogs as well as usually contains random characters along with implanted variables.

Essentially, for an e-mal receiver this may indicate that anti-virus software scanned the URL. However, brushing the mouse on it reveals a lengthy, unpleasant URL hyperlink having plentiful random characters -an important sign that it shouldn't be followed.

Similarly, where the message ends, there's one fingerprint code that too isn't credible for it doesn't necessarily authenticate the safety of the message, security researchers from MXLab state.

Related article: McAfee Alerts Windows about Accessibility Hole in Vista

» SPAMfighter News - 1/2/2012