Michael Jackson spam spreads, malware attacks likely

Be the first to comment | 1I like it!
June 26, 2009, 12:35 PM —  Computerworld — 

Within hours of the death of pop star Michael Jackson, spam trading on his demise hit inboxes, a security firm said today as it warned that more was in the offing.

Just eight hours after news broke about Jackson, U.K.-based Sophos started tracking the first wave of Jackson spam, which used a subject head of "Confidential -- Michael Jackson." The spam wasn't pitching a product or leading users to a phishing or malware Web site, but instead was trying to dupe users into replying to the message in order to collect e-mail addresses and verify them as legitimate.

"The body of the spam message does not contain any call-to-action link such as a URL, e-mail or phone number," said Sophos in its company's blog today. "But the spammer can harvest receivers' e-mail addresses via a free live e-mail address if the spam message is replied to."

"Undoubtedly we'll see more with Jackson," said Graham Cluley, a Sophos senior technology consultant, Friday. "Actually, spammers and hackers have done Jackson before. Several years ago they pitched a breaking news story, claiming that he had attempted suicide."

The timing of that campaign was not coincidental: It followed Jackson's acquittal on all charges in child sexual abuse. "The news of his suicide attempt was believable," said Cluley, who noted that scammers and hackers often trade on tragedies to get people to click links. In that case, users were hit with a hacker toolkit that tried several exploits against Internet Explorer.

"I wouldn't be surprised to see hackers claiming that they have top-secret footage from the hospital, perhaps [allegedly] taken by the ambulance people, that then asks you to install a video codec," said Cluley, talking about a common malware ploy. Users who click on the supposed codec update link are, in fact, then infected with attack code, often a bot that hijacks their computer.

Users should also beware of results from searches they run using the singer's name, said Cluley. "We've already seen search engine manipulation involving Farah Fawcett, who also died yesterday. Criminals will create pages with keywords and news stories, sometimes even legitimate stories, to get to the top of the search lists," Cluley continued. "When you go to one of those sites, you'll get hit with malware."

In the case of the Fawcett search engine manipulations, sites that gamed Google, for instance, led users to fake antivirus software sites, which lied to users, telling them that they were infected with malicious code.

Another tactic that cybercriminals have used with celebrity deaths, said Cluley, is what he called "tribute spam."

"We saw this after Pope John Paul II died," said Cluley. "Spammers sent out messages saying they were selling things like a tribute DVD, and, of course, asked for credit card details. You may never have gotten a DVD, but they had your credit card."

Similar schemes may soon be launched to take advantage of the interest in Jackson. "If you want to buy some Jackson merchandise, do it from Amazon or iTunes, not some site you've never heard of," urged Cluley.

Computerworld

Sign up for ITworld's Daily newsletter
Follow ITworld on Twitter @IT_world

I like it!
Close

On Twitter now

michael jackson

Powered by Twitter
You are logged in | Sign out
Sign in and post to Twitter

What are you thinking?

Cancel Tweet sent

On Twitter now

Post a comment
The content of this field is kept private and will not be shown publicly.
  • Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd>
  • Lines and paragraphs break automatically.
peer-to-peer

Brian Proffitt
Microsoft/Novell: Breaking Down the Coupon Numbers

Esther Schindler
Drupal's Dries Buytaert on Building the Next Drupal

Tom Henderson
Top Ten General Operating Systems Rants

pasmith
PS3 motion controller delayed; goes up against Project Natal

sjvn
Neolithic Windows security hole alive and well in Windows 7

claird
Perl source code comparison makes for good reading

mikelgan
Cell phones don't create stress or interrupt much

Sandra Henry-Stocker
How to: The Unix Interview

 

Where Google Chrome security fails: the password
I heard mention that the Chrome OS will have some sort of encryption available a la bitlocker. If it's possible to encrypt personal data using another password or key, then it may have potential for very secure data.... And Ubuntu has an 'encrypt home directory' option, perhaps google should follow suit.
- Dann

Join the conversation here

The Daily Tip

The Daily TipQuick, practical advice for IT pros. Made fresh daily.

Hot tips:

Want to cash in on your IT savvy? Send your tip to tips@itworld.com. If we post it, we'll send you a $25 Amazon e-gift card.

Newsletters

Subscribe to ITWORLD TODAY and receive the latest IT news and analysis.

I would like to receive offers via email from ITworld partners.
By clicking submit you agree to the terms and conditions outlined in ITworld's privacy policy.
Marketplace