Hackers leverage Obama win for massive malware campaign
Hackers have seized on the results of the U.S. presidential election to launch a major malware campaign that tries to trick users into installing an update to Adobe's Flash, but actually plants a Trojan on unprotected PCs, security experts warned Wednesday.
The malware blitz stems from spam messages touting Democratic Sen. Barack Obama's victory Tuesday night, and offers up a link to what is supposedly a site sporting election results. When users click on the link, however, they're shunted to a fake site that demands the user install an update to Adobe System Inc.'s Flash Player before viewing a video.
Rather than a Flash update, what's downloaded is a Trojan horse that compromises the PC then floods the machine with more malware, said Dan Hubbard, vice president of security research at Websense Inc. "This is very coordinated," said Hubbard of the Obama-themed attacks, "with evidence that they planned this, then waited for the election results."
According to Hubbard, the hackers registered 15 to 20 domains Tuesday to host the malware and fake site. All the domains are on so-called "fast flux" servers, Hubbard added, referring to the practice in which criminals rapidly switch domains between multiple IP (Internet protocol) addresses. Identity thieves often use the fast-flux tactic as a way to stay ahead of the law, and prevent their servers from being shut down.
Hubbard called the attacks "the largest malicious e-mail campaign going," adding that Websense had tracked 100,000 individual copies of the scam message so far Wednesday.
Meanwhile, rival researcher Graham Cluley of Sophos said his company put the volume at 60% of all the malicious spam on the Internet. "This is taking advantage of 'Obama mania'," said Cluley, a senior technology consultant with the U.K.-based security firm. "He's easily the most famous person on the planet, and the fascination with him isn't just in the U.S. It's global."
Sign up for ITworld's Daily newsletter
Follow ITworld on Twitter @IT_world
On Twitter now
security
Powered by TwitterOn Twitter now
security
Brian Proffitt
Microsoft/Novell: Breaking Down the Coupon Numbers
Esther Schindler
Drupal's Dries Buytaert on Building the Next Drupal
Tom Henderson
Top Ten General Operating Systems Rants
pasmith
PS3 motion controller delayed; goes up against Project Natal
sjvn
Neolithic Windows security hole alive and well in Windows 7
claird
Perl source code comparison makes for good reading
mikelgan
Cell phones don't create stress or interrupt much
Sandra Henry-Stocker
How to: The Unix Interview
Where Google Chrome security fails: the password
I heard mention that the Chrome OS will have some sort of encryption available a la bitlocker. If it's possible to encrypt personal data using another password or key, then it may have potential for very secure data.... And Ubuntu has an 'encrypt home directory' option, perhaps google should follow suit.
- Dann
Join the conversation here
Quick, practical advice for IT pros. Made fresh daily.
- Ubuntu advances: Why Ubuntu server installations will surge in 2010
- Social media marketing: How to make friends with benefits
- More...
Want to cash in on your IT savvy? Send your tip to tips@itworld.com. If we post it, we'll send you a $25 Amazon e-gift card.
Hackers leverage Obama win for massive malware campaign
There's irony here, I can feel it.