November 23, 2009

Social Security Zeus spam

A new run of spam trying to push the dangerous Zeus, or Zbot, trojan began circulating Monday, Gary Warner, director of research in computer forensics at the University of Alabama at Birmingham, said in a blog post. The latest campaign delivers emails claiming to come from the U.S. Social Security Administration. According to the messages, recipients can view their annual Social Security statement by clicking a link, which leads to a page requesting their Social Security number. Entering that data leads users to another page that contains a malicious executable disguised as a button to view the statement. Initial anti-virus detection was minimal, Warner said. — DK
Related Articles
Related Topics

More in News

Privacy-bolstering "Apps Act" introduced in House

The bill would provide consumers nationwide with similar protections already enforced by a California law.

Microsoft readies permanent fix for Internet Explorer bug used in energy attacks

Microsoft is prepping a whopper of a security update that will close 33 vulnerabilities, likely including an Internet Explorer (IE) flaw that has been used in targeted website attacks against the U.S. government.

Weakness in Adobe ColdFusion allowed court hackers access to 160K SSNs

Up to 160,000 Social Security numbers and one million driver's license numbers may have been accessed by intruders.