Fake-CNN spam mutates as attacks continue
The massive attack that has infected PCs by tricking users into clicking links in fake messages from CNN.com shows little sign of ending soon, security researchers said Friday.
According to MX Logic Inc., spam posing as CNN.com Top 10 lists peaked at close to 11 million messages per hour early Thursday, but remained at high volumes throughout the day Friday. The Colorado security vendor said it had been tracking an average of 8 million messages per hour since midnight.
MX Logic's vice president of information security, Sam Masiello , called the trend "a very slow, but steady decline" from the 11 a.m. Mountain Time peak the day before.
Masiello also said that the spam has changed since attacks were first launched on Tuesday. "We've also seen several morphs of this spam over the past couple of days," he said in an entry posted on the MX Logic blog Friday . Where the messages once trumpeted " CNN .com Daily Top 10" in the subject heading and linked to a single filename on malware-hosting sites, now the spam sports a subject reading "CNN Alerts: My Custom Alert" and uses a variety of filenames in the malicious URL.
"This is likely in response to all of the media attention and awareness that has been brought up over the past couple of days," Masiello speculated.
Also on Friday, Websense Inc. reported that its researchers had seen the attack mutating, with the spam subject heading not only touting "CNN Alerts: My Custom Alert," but also using legitimate news stories culled from CNN to make the messages more convincing.
Sign up for ITworld's Daily newsletter
Follow ITworld on Twitter @IT_world
On Twitter now
malware
Powered by Twitter
jfruh
Apple syncing patent can't come soon enough
pasmith
New Twitter features borrow from 3rd party clients
Esther Schindler
Open Source Changes the Software Acquisition Process
mikelgan
How to set up continuous podcast play on the new iTunes
David Strom
Five important Windows 7 mobility features
sjvn
Guard your Wi-Fi for your own sake
Sandra Henry-Stocker
Grepping on Whole Words
Sidekick: The Good News & the Bad News
Either way you look at it Microsoft Data Center management did not follow standards or best practices in this failure. In which case it makes me wonder more about the outsourcing of corporate data much less personal data.
- mburton325
Join the conversation here
Quick, practical advice for IT pros. Made fresh daily.
Want to cash in on your IT savvy? Send your tip to tips@itworld.com. If we post it, we'll send you a $25 Amazon e-gift card.
I read of this a few days
I read of this a few days ago and had one in my junk mail folder. Today I received three that are from cnn.com and are cnn alerts: My Custom alert. I know I didn't sign up for them and hope others read about this before they click on them. I found this site from a google search on cnn and will ad to my bookmarks. I found your article interesting and this is my first time to this site. Hovering over the links shows before the cnn http://cineus.ru . I hope someone squashes this soon.Jack
I saw this e-mail in my
I saw this e-mail in my Incredimail spam folder though I subscribe to CNN e-mails. I clicked on the link and tried installing the activex, although it didn't seem like an Abobe standard install. Eset Smart Security deleted the file immediately. This happened last week.I am getting bombarded by
I am getting bombarded by these CNN Alerts. I have been marking them and their predecessors, Daily Top Ten as Junk but oddly Thunderbird for some reason doesn't recognise them as such so my Inbox is getting full of them.