backtop


Print 12 comment(s) - last by Mitch101.. on Sep 23 at 10:08 AM

Watch out for e-Ticket related emails, they could lead to an attack on your computer

A devious new attack has debuted largely unnoticed and is infecting computers with trojans worldwide.  The new attack, first discovered by anti-virus experts at BitDefender, uses fake e-Ticket emails to deliver malware to unsuspecting users.

With the advent of online ticket sales, many users have given little hesitation to opening the .ZIP attachment to the messages, which generally bear the subject line "Buy Airplane Ticket Online".  After all, the emails look legitimate and use the names and logos of major national or regional North American airlines.

When the users download the file, it infects their computers with malware.  The Trojan.Spy.Zbot.KJ and Trojan.Spy.Wsnpoem.HA are among the malware used.  The Trojan.Injector.CH family of threats is also beginning to be used with the messages.

A similar, but less ambitious, attack was developed in July using JetBlue's logo and identity.  It is suspected that the two hacks may be connected to the same malware gang.  The gang may also be connected to other recent attacks which used a similar attachment scam, in which viruses delivering files were disguised as overnight shipping reports.

Security experts warn that these recent attacks may help black hats gain access to corporate networks, whose users are typically savvy enough to avoid less official looking schemes.  BitDefender researchers describe the attacks stating, "The viruses in this campaign have rootkit components that help them to install and hide themselves on the compromised machine either in the Windows or Program Files directory.  They inject code in several processes and add exceptions to the Microsoft Window Firewall, providing backdoor and server capabilities."

The trojans sit listening on several Windows ports.  They also try to download files from servers with domain names in the Russian Federation, indicating the attacks may be Russian in origin.  Russia is gaining a reputation as a center for organized cyber-crime.  The attackers may be seeking to use the infected computers to create a botnet for large-scale cyber attacks.

Sorin Dudea, head of the Antimalware Research Lab at BitDefender, warns "Users should be aware that without the appropriate security solution the integrity of their systems is at an extremely high risk.  The Trojans this new malware distribution campaign delivers and the high rate of infections prove once again not just the [involved] cybercriminals' ingenuity, but also the lack of interest users show in terms of [maintaining appropriate] systems' defense and sensitive data protection."

Estimates of the number of computers infected by this latest round of scams are not yet widely available.  



Comments     Threshold


This article is over a month old, voting and posting comments is disabled

RE: Once again a case of user error...
By Mitch101 on 9/22/2008 10:43:47 AM , Rating: 3
They will never learn.

AMWAY = I see Amway is based upon the idea that the majority of people are not that bright and convinces people that buying no frills brand items at above retail costs and getting a mere 3% back is an investment into their own business. Why not just buy a better brand name item at the store for at least 30% less. 30% > 3% and would provide you with more money in your pocket not to mention a better product.

If the majority of people had common sense then AMWAY would have never become as large as they did.


RE: Once again a case of user error...
By superforever on 9/22/2008 8:48:03 PM , Rating: 2
I agreed their price is a little too high for most people but if you know the difference between no frills and AMWAY's products you will NOT say that anymore.


By Mitch101 on 9/23/2008 10:08:24 AM , Rating: 2
Your trying to justify Amway. I have tasted them and seen them. You can certainly get a significantly better product at your grocer and electronics store for much less.

You sound like their perfect rep you probably spend a few hundred more to go to a pep rally a listen to a diamond talk out his rear end. Those meetings are just another way of bilking you out of your money and convincing you to stay with Amway. If they are so productive then they wouldnt need to charge you for it. Teaching sales tactics your a member of should be free but they know you will fail so they charge you. Heck everyone loves a success story. If they didn't then at 2am there wouldn't be a need for infomercials trying to tell you to buy real estate foreclosures. I do that and can tell you its nothing like what they tell you in the infomercial. I love what they wont tell you in the infomercial like the condition and odds of finding a real deal. You might get the home cheap but your going to do a lot more than stick a for sale on the lawn and make money but the infomercials never show you the real side of foreclosures. The infomercials are much like Amway they wont show you the bad side before getting your money. Try getting a price list before becoming a member.

I had a pair of friends who got caught up in Amway one stayed in for a long time the other compared and got out. They both lost one lost a lot more. Amway won.


“We do believe we have a moral responsibility to keep porn off the iPhone.” -- Steve Jobs

Related Articles













botimage
Copyright 2014 DailyTech LLC. - RSS Feed | Advertise | About Us | Ethics | FAQ | Terms, Conditions & Privacy Information | Kristopher Kubicki