BlackHole Prominent Malware Issue during October 2012
A new malware analysis report by GFI Software for October 2012 states that one major problem over the month was BlackHole the cyber-criminals' attack toolkit. This toolkit reportedly, was associated with spam campaigns disguised as Skype messages, Facebook account checks, and Windows 8.
According to Senior Threat Researcher Christopher Boyd from GFI Software, BlackHole poses an extreme risk to Internauts because it keeps changing its function depending upon the type of online-threat it creates. The malware makes the cyber-crime attack's creation process easy while it's conveniently adjusted towards capitalizing on breaking news stories and magnificently hyped prominent brands, Boyd explains. Softpedia.com published this dated November 19, 2012.
Moreover, BlackHole has also been adjusted to attack particular Internet-users/ organizations via particular types of malicious programs.
Also, days prior to Windows 8 release, the report states, end-users received spam mails presenting one "Microsoft Windows License" for free. If the related web-link was clicked followed with its content getting downloaded, then a BlackHole attack confronted the users who became infected with Trojan Cridex.
One more bulk e-mail attack hit users of Facebook when the message told recipients about their accounts being destabilized that required getting re-verified. In those e-mails, web-links took potential victims onto a 'BlackHole exploit' page from where Trojan ZeuS was served in the guise of an Adobe Flash-player.
Meanwhile during October 2012, several e-mail campaigns hit Skype users too. Those e-mails sometimes carried fake voicemail announcements. If their BlackHole web-links were clicked then ZeuS was served. Some Internauts even received e-mails that had general queries regarding their profile image, along with one web-link leading onto a Trojan that also eliminated itself before issuing Domain Name System (DNS) queries off different malevolent URLs.
Related article: Blackhole Exploit Injected into USPS Website
» SPAMfighter News - 26-11-2012