July 24, 2009

Malware served up thanks to solar eclipse

In a reprise of an old trick -- leveraging celestial events -- cybercriminals are using search-engine optimization poisoning to attract victims to a rogue software site, Trend Micro researchers said Thursday.

When a user seaches for information on the recent solar eclipse, the results may contain links to scareware-hosting sites. The ruse is not the first to capitalize on heavenly events. For example, after a blood-red lunar eclipse in February 2008, hucksters tried to lure users into downloading malware onto their systems.

In a post on the TrendLabs Malware Blog, senior threat researcher Joey Costoya, who is credited with discovering the attack, described how the the latest scam works:

“When users query the phrase ‘solar eclipse 2009 in America' in popular search engines,” according to the post, “certain top ranking sites would redirect users to a malicious site under the domain name antispyware-scannerv3,” which is where the malware is hosted.

Wednesday's eclipse, with a trajectory over China and India, was the longest total solar eclipse of the 21st century.


Courtesy: Trend Micro

Related Articles
Related Topics

Sign up to our newsletters

More in News

Bitcoin mining botnet has become one of the most prevalent cyber threats

Fortinet researchers have tracked 100,000 new ZeroAccess trojan infections per week, making the botnet very lucrative to its owners.

House Intelligence Committee OKs amended version of controversial CISPA

House Intelligence Committee OKs amended version of controversial ...

Despite the 18-to-2 vote in favor of the bill proposal, privacy advocates likely will not be satisfied, considering two key amendments reportedly were shot down.

Judge rules hospital can ask ISP for help in ID'ing alleged hackers

Judge rules hospital can ask ISP for help ...

The case stems from two incidents where at least one individual is accused of accessing the hospital's network to spread "defamatory" messages to employees.