Trojans and viruses are out to get you

August 26, 2008, 08:37 PM —  PC World — 

Have you received your virus-infected e-mail yet today? I don't know what's up, but in the last week I've received dozens of e-mails with a virus infected attachment or a link to a backdoor Trojan horse. There are three variations and all have one thing in mind--luring me into getting zapped with a nasty payload.

The first has a link to an authentic-looking CNN alert. Click the link (no, don't!--I was speaking metaphorically) and you'll land on a malware-hosting site that attempts to download a malicious executable onto your PC. Read "Fake CNN Alert Still Spreading Malware" for details.

I've also received a smattering of e-mails created by clueless cretins, dopes who haven't taken the time to run a spell checker on their even dopier messages. One tells me my FedEx package hasn't been delivered and asks me to click on the attached zipped Trojan horse to print the invoice. What caught my eye was the tracking number in the subject line, and I worry that some of you might not pay attention to the message and click the link.

But the most malevolent of the bunch has a "click to watch the video" link that purportedly leads to MSNBC's site, but actually sweeps you to a malware site that insists you need to update Flash in order to watch the video. Too many people probably do need to update their Flash applet, so this fool thing is a real temptation. But click "adobe_flash.exe" and you'll get nailed by the EncPk-DA Trojan. You can get a full explanation of the depth and breadth of this exploit in "Fake News Bulletin Spreads Malware."

Sign up for ITworld's Daily newsletter
Follow ITworld on Twitter @IT_world

I like it!
Close

On Twitter now

malware

Powered by Twitter
You are logged in | Sign out
Sign in and post to Twitter

What are you thinking?

Cancel Tweet sent

On Twitter now

Post a comment
The content of this field is kept private and will not be shown publicly.
  • Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd>
  • Lines and paragraphs break automatically.
peer-to-peer

Brian Proffitt
Microsoft/Novell: Breaking Down the Coupon Numbers

Esther Schindler
Drupal's Dries Buytaert on Building the Next Drupal

Tom Henderson
Top Ten General Operating Systems Rants

pasmith
PS3 motion controller delayed; goes up against Project Natal

sjvn
Neolithic Windows security hole alive and well in Windows 7

claird
Perl source code comparison makes for good reading

mikelgan
Cell phones don't create stress or interrupt much

Sandra Henry-Stocker
How to: The Unix Interview

 

Where Google Chrome security fails: the password
I heard mention that the Chrome OS will have some sort of encryption available a la bitlocker. If it's possible to encrypt personal data using another password or key, then it may have potential for very secure data.... And Ubuntu has an 'encrypt home directory' option, perhaps google should follow suit.
- Dann

Join the conversation here

The Daily Tip

The Daily TipQuick, practical advice for IT pros. Made fresh daily.

Hot tips:

Want to cash in on your IT savvy? Send your tip to tips@itworld.com. If we post it, we'll send you a $25 Amazon e-gift card.

Newsletters

Subscribe to ITWORLD TODAY and receive the latest IT news and analysis.

I would like to receive offers via email from ITworld partners.
By clicking submit you agree to the terms and conditions outlined in ITworld's privacy policy.
Marketplace