Hackers begin malware barrage soon after Obama elected

Share this article:
Hours after Barack Obama was elected president of the United States, cybercriminals began capitalizing on the historic news by delivering a barrage of malware-laden spam to users worldwide.

The emails were typical social-engineering ploys: They claimed to contain a video of an "amazing speech" by the president-elect but actually included a link to a trojan, said Graham Cluley, senior technology consultant at endpoint security firm Sophos.

"They wasted no time at all," Cluley told SCMagazineUS.com. "It's just taking advantage of Obama-mania."

Sophos estimated some 60 percent of malicious spam on Wednesday was related to Obama. At least two security companies said they had seen about two million of the emails, which began arriving Wednesday morning EST.

The messages try to dupe victims into clicking on a link to download the latest version of Adobe Flash in order to view the video, Cluley said. Clicking on that link, however, installs a trojan.


Fake news website offering video of Barack Obama's win actually downloads trojan.

He said the spam resembles similar malicious email campaigns purporting videos of such celebrities as Britney Spears and Angelina Jolie.

Websense, meanwhile, said it was tracking a similar wave of spam that contained a trojan-laden video claiming to show interviews with Obama advisers.

Cluley also advised users to keep an eye out for malicious sites that are returning as "sponsored links" when typing common Obama-related search terms into Google.
Share this article:

Sign up to our newsletters

More in News

Pentagon to triple its security workforce by 2016

Pentagon to triple its security workforce by 2016

Defense Secretary Chuck Hagel recently announced the recruitment efforts during a speech in Fort Meade, Md.

Tech manufacturer's online payment system breached

LaCie confirmed an unauthorized party used malware to access its online payment system for almost a year and could have stolen customer information.

The Heartbleed bug works, and could be a scapegoat for older breaches

The Heartbleed bug works, and could be a ...

Researchers proved the Heartbleed bug was real in a challenge issued by CloudFlare to prove private keys can be stolen, right around the time companies are claiming they were breached ...