November 23, 2009

Social Security Zeus spam

A new run of spam trying to push the dangerous Zeus, or Zbot, trojan began circulating Monday, Gary Warner, director of research in computer forensics at the University of Alabama at Birmingham, said in a blog post. The latest campaign delivers emails claiming to come from the U.S. Social Security Administration. According to the messages, recipients can view their annual Social Security statement by clicking a link, which leads to a page requesting their Social Security number. Entering that data leads users to another page that contains a malicious executable disguised as a button to view the statement. Initial anti-virus detection was minimal, Warner said. — DK
Related Articles
Related Topics

More in News

Operators again revive Pushdo botnet, use a popular tactic to stay hidden ...

Botnet operators are using a domain-generation algorithm to conceal their command-and-control center. And once they knew security researchers were on to their tricks, they got even slicker.

Mac spyware discovered on Angolan dissident's computer at Oslo Freedom Forum

Mac spyware discovered on Angolan dissident's computer at ...

Security researchers are studying an apparent new strain of Mac malware that turned up on the computer of a participant at the just-concluded Oslo Freedom Forum, an annual human rights ...

Judge in London sentences LulzSec members

Judge in London sentences LulzSec members

The sentences range from 20 to 32 months, with none of the defendants likely to serve the full time. There has been no formal request to extradite the U.K. men ...