About Me

Alex Hinchliffe

Alex Hinchliffe

Read More

Feeds & Podcasts

Blogs

Meet the Bloggers

Archive

Tags

#SecChat $1 million guarantee 12 Scams of Christmas access to live fraud resolution agents Acquisition Alex Thurber Android antivirus Apple botnet Channel Partners cloud security Compliance Consumer counter identity theft credit card fraud and protection credit fraud alerts credit monitoring credit monitoring and resolution critical infrastructure Cyber Security Mom cyberbullying Cybercrime cybermom data breach data center data center security Data Protection Dave DeWalt DLP Email & Web Security embedded encryption Endpoint Protection enterprise facebook fake anti-virus software Family Safety Friday Security Highlights global threat intelligence google government Hacktivism how to talk to kids how to talk to teens identity fraud identity fraud scams identity protection identity protection $1 million guarantee identity protection fraud identity protection surveillance identity surveillance identity theft identity theft expert identity theft fraud identity theft protection identity theft protection product Identity thieves and cybercriminals intel iphone kids online behavior lost wallet protection malware McAfee McAfee Channel McAfee Family Protection McAfee Identity Protection McAfee Initiative to Fight Cybercrime McAfee Labs McAfee security products Mid-Market Mobile mobile malware mobile security monitor credit and personal information Network Security online personal data protection online safety Operation Aurora PCI personal identity theft fraud personal information loss personal information protection phishing privacy proactive identity protection proactive identity surveillance Public Sector restore credit and personal identity Risk and Compliance scam scams scareware security smartphones social media social networking social networks spam Stuxnet twitter vulnerability Web 2.0 work with victim restore identity

McAfee Labs :

Super Wednesday

Wednesday, February 13, 2008 at 11:39am by Alex Hinchliffe
Alex Hinchliffe

Whilst the masses stay vigilant to “love” attacks [1][2][3][4] in the run-up to Valentine’s Day (tomorrow, don’t forget!), others, including McAfee Avert Labs, are wary of further hybrid spam and malware attacks. This morning we received thousands upon thousands of “Google Ad link” samples via our anti-malware and anti-spam automation systems.

A topical social-engineering trick highlights the race to the White House [5] for the Hillary Clintons and Barack Obamas of the world. It’s actually surprising we didn’t see more of this attack yesterday–the week’s anniversary of Super Tuesday [6].

The spam email (example below) contains a link (hidden by HTML [7]) that points to Google’s page-ad service passing another URL–a malicious one–which effectively redirects your browser to a site hosting a protectively detected Downloader.gen.a [8] sample. The site used in this attack is suspected to be linked to the notorious Russian Business Network (RBN) [9].

Other examples of this spam included some of the following subjects:

  • Hillary Clinton Full Video !!!
  • Interesting dvd with Beyonce + 4 asiatic lovers!
  • Interesting dvd with Jennifer Lopez + 5 english boys!
  • Interesting mp3 with Beyonce + 5 portuguese horse!
  • Interesting photo with Mylene Farmer + 6 black stallions!
  • Interesting video with Keira Knightley + 2 black dogs!
  • Keen melody with Christina Aguilera + 4 english boys!
  • Keen photo with Britney Spears + 4 asiatic stallions!
  • Kick-up mp3 with Christina Aguilera + 5 irish mans!
  • New melody with Kylie Minogue + 3 spain dogs!
  • New presentation with Mylene Farmer + 6 portuguese lesbians!
  • Part of presentation with Jessica Parker + 6 black dogs!
  • Shocking photo with Jessica Parker + 3 italian horse!
  • Stunning presentation with Beyonce + 3 black stallions!

We urge you to be vigilant and keep your anti-spam and anti-malware protection up to date. Remember, if it sounds too good to be true, it normally is. ;)

[1] : http://www.publicopiniononline.com/localnews/ci_8249998
[2] : http://blogs.knoxnews.com/knx/silence/archives/2008/02/valentines_day.shtml
[3] : http://www.nbc13.com/gulfcoastwest/vtm/news.apx.-content-articles-VTM-2008-02-13-0006.html
[4] : http://press-releases.techwhack.com/16498/microworld-technologies
[5] : http://www.independent.co.uk/news/in-the-news/race-for-whitehouse
[6] : http://en.wikipedia.org/wiki/Super_Tuesday
[7] : http://www.labs.com/research/blog/index.php/2007/08/20/the-risks-of-html-formatted-e-mails
[8] : http://vil.nai.com/vil/content/v_142821.htm
[9] : http://www.securecomputing.net.au/news/69637,britney-paris-used-as-hook-in-new-spam-botnet.aspx

Bookmark and Share

Submit your own comments / message for this post

Your email is never published nor shared. Required fields are marked *

 

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

Comments (0)