BlackBerry Owners Targeted with Malware-Laced Phishing Messages
Websense the security company is informing that one fresh malicious program is targeting owners of BlackBerry smart-phones through spear phishing or personalized spoofed e-mails.
Depicting a header "Your BlackBerry ID has been created," the fraudulent electronic mail states that for the user to enjoy all facilities featured in his BlackBerry ID, he requires abiding by the directions within the attached document. Since the smart-phone is an all-purpose key for his BlackBerry, it provides the following benefits: One, a single symbol for every BlackBerry program, website or service. Two, while changing to other smart-phones, certain e-mail services as well as accounts that get automatically transferred. Three; enabling the utilization of every function within the 'BlackBerry Application World' storage. And four; safeguarding all monetary exchanges through BlackBerry's service.
Finally, before signing off from the BlackBerry Group, the e-mail tells the recipient that more information regarding BlackBerry is obtainable on https://blackberryid.balckberry.com/.
Websense notes that whereas the text along with web-links in the e-mail appears okay, it is the attachment which causes hazards to the user. For, taking down and running it on the affected computer, lets the hacker install more .exe files as also alter its registry thus enabling the mechanic execution of malware on every system-restart.
Investigator Elad Sharf at Websense states that the electronic mail is exploiting BlackBerry's name being aware it'll effectively compromise corporate users. He adds that, the malware-ridden e-mail typically snatches control of the infected computer and brings it under the hackers' control thus risking corporate-data. V3.co.uk published this dated August 23, 2012.
The fake e-mail evidently, replicates an authentic BlackBerry e-mail. And although one may feel suspicious about the given attachment, there isn't any compromised or malevolent web-link included. VirusTotal's 17/36 anti-virus Engines have detected the malware.
Incidentally, there's little knowledge about the BlackBerry e-mail fraud's total impact, with no definite figure of the number of computers being contaminated.
And while government officials and business executives widely use BlackBerry, the smart-phone scarcely became a cyber-criminal target. Still it's the 2nd instance during August 2012 that the phone's users have been attacked, with the ZeuS targeting the RIM-designed smart-phone previously, Websense concludes.
» SPAMfighter News - 30-08-2012