Sophos Spots Trojan-embedded E-mail Spam

Security researchers from Sophos the security company have detected an ongoing spam mail scam, which has a malevolent file as attachment so cyber-criminals may contaminate Internauts' computers.

Cautioning computer operators, the security company urges that they require remaining aware of e-mails that seemingly promise images of girlfriends in nude alternatively assert reports have been made about them to Police, since there's one Trojan malware actually hidden inside the zipped attachment named 'Photo-zip.'

Abnormally, several lengthy subject lines too show up within the spam mails like "You can't say I haven't warned you now enjoy the consequences," "These pictures should be taken down immediately," "The criminal investigation against you has started. Grave privacy violation is a serious thing" and "The police investigation is under way now. You'll be really sorry about what you have done."

Moreover, all the e-mails have one thing as common i.e. they attempt at creating an aura of urgency.

One e-mail version tells the recipient that the writer has evidence that the former hacked into his e-mail as well as filched his financial information and private photos as plainly visible within the given attachments. So incase the recipient doesn't reply in 48-hrs it'll necessitate the writer to report about him, the message warns.

One other sample e-mail, addressing probable women targets begins with apology for disturbing the person (name mentioned), but the e-mail sender got some pictures (attached to the e-mail) that appear as coming from her along with her boyfriend, which is disturbing as she's circulating her personal photographs around.

Unfortunately, if the e-mail recipients can't be un-inquisitive about the spam mails, they can easily be victimized with false admonishing as the harmful attachment carries the Zbot/ZeuS Trojan, which Sophos identified as Troj/Zbot-CCH. This malware, if run, will instantly get planted onto the affected PCs followed with recording their users' confidential details as also sensitive Internet credentials.

Conclusively, according to Sophos' security experts, it is advisable that users avoid downloading attachments coming within uninvited e-mails, while being particularly aware of messages, which induce strong emotional feeling instantly, despite them appearing as sent from friends or co-workers.

Related article: Sobig.f Worm After three Years of Manipulation

» SPAMfighter News - 7/4/2012