Malware-Laden E-mails being used against Dropbox Users
AppRiver has just detected one fresh malware campaign that involves infected electronic mails pretending to be formal notifications that Dropbox the cloud-storage company supposedly sent.
Appearing in the guise of one computer face that looks sad, the e-mails assert there's been a request from the recipient to help reset his password for his earlier password is currently very risky. The messages' signing entity appears as "The Dropbox Team."
Opening these e-mails reveals certain web-link, which takes onto one web-page directing that the end-user should make his browser up-to-date. The page has further web-links that if clicked pulls down a Trojan from the ZeuS group-of-malware, warns AppRiver.
One infamous banking Trojan, ZeuS has been tormenting every member of the security industry since a number of years. It filches victimized users' financial data. During May 2013, according to McAfee, ZeuS along with the malware's other variants was behind 57.9% of the entire bot-related contaminations.
Security Analyst Jonathan French of AppRiver remarking about ZeuS' existence indicated that although it had remained around since sometime, the Trojan hadn't really ceased to be a threat. Itproportal.com published this, October 21, 2013.
Security investigators at AppRiver found that there were 54 distinct domains from which the new ZeuS outbreak originated, and these domains received hosting service from the Russia based web-domain namely dynamooblog.ru. It's that very web-domain, which spammers utilized within one likewise Dropbox bulk e-mail scam that Dynamoo Blog's Conrad Longmore, Security Blogger analyzed.
The assault represents the group of several that aimed at Dropbox-users. Being highly possible, the assaults result many people from the security as well as technology community towards marking Dropbox as unsuitable to big organizations' usage.
Chief Executive Aaron Levie at Box, the company for corporate cloud storage stated corporate houses would be forced to not utilizing Dropbox type of services incase they wish for reinstating hold over their networks, reported V3, October 21, 2013.
Christine Bejerasco Security Expert of Web Reputation at F-Secure stated that Internet facilities (Dropbox, Twitter and Facebook) proving as incapable of sufficiently examining their security prior to getting introduced was one of the main explanations of the present increased cyber-crime, reported V3.
» SPAMfighter News - 25-10-2013