Security news6 November 2008
Malicious spam attack exploits Obama win, Sophos reports Messages account for 60 percent of all malicious emails
IT security and control firm Sophos is warning email users, excited about the US presidential election, to exercise caution when checking their inboxes. The warning comes after the discovery of a widespread malicious spam campaign that claims to offer news of Barack Obama's successful campaign, but instead links to a website that attempts to infect users with a Trojan horse that steals information for identity fraud.
The emails, which have subject lines such as "Obama win preferred in world poll" and claim to come from news@president.com, have accounted for approximately 60 percent of all malicious spam seen by SophosLabs in the past 24 hours.
The spam messages contain a link that takes internet users to a webpage which instructs visitors to download 'Adobe Flash 9' to view a video of the first African-American president making an "amazing speech". However, the download will infect computers with a malicious Trojan horse detected by Sophos as Mal/Behav-027.
"Barack Obama is undoubtedly the most famous person on the planet right now," said Graham Cluley, senior technology consultant at Sophos. "But email users who are eager to get the latest scoop on Obama’s monumental presidential win should be careful that they are not being tricked by conniving cybercriminals. Hackers will be quick to jump on breaking news to spread malware and steal sensitive information – web and email users should exercise extra caution and ensure that they are running security software that is fully patched and up-to-date."
Sophos experts have determined that the malicious Trojan horse is based on rootkit technology which aids concealment on the victim's computer. Designed to steal information, the malware spies on users' keyboard and mouse inputs, can take screenshots, looks for passwords and submits the information it discovers to a webserver located in Kiev, Ukraine.
Download now
- Attacks rise 70% on social networks
- SEO poisoning and scareware on the rise
- Targeted attacks and cyberespionage
About Sophos
More than 100 million users in 150 countries rely on Sophos as the best protection against complex threats and data loss. Sophos is committed to providing security and data protection solutions that are simple to manage, deploy and use and that deliver the industry's lowest total cost of ownership. Sophos offers award-winning encryption, endpoint security, web, email, and network access control solutions backed by SophosLabs - a global network of threat intelligence centers. With more than two decades of experience, Sophos is regarded as a leader in security and data protection by top analyst firms and has received many industry awards.
Sophos is headquartered in Boston, US and Oxford, UK. More information is available at www.sophos.com.
