Pushdo author hoisted by his own petard

Today we have seen another aggressive seeding of Pushdo. Happily, it has once again been proactively blocked. The Trojan is proactively detected as Troj/Pushdo-Gen, and the spam message is blocked because of porn rules.

As you can see from the above screenshot, the adult nature of the email meant that even if we did not have proactive detection as Troj/Pushdo-Gen, the anti-spam protection data published by SophosLabs would have caught this message.

Posted on October 5th, 2007 by Pob, SophosLabs, UK
Filed under: Malware, Spam

Windows 7 security - A great leap forward or business as usual?

About SophosLabs

SophosLabs protects businesses from known and emerging malware - viruses, rootkits and spyware - and other computer threats like phishing, spam and scams. Learn more about the people who write this blog.

RSS feed

Hot video

International Kill-A-Zombie Day

SophosLabs blog