Phishing attacks with Zeus Trojan targeting Outlook Webmail shops
Targeted phishing attacks aimed at getting Outlook Web Access users within enterprise organizations to download a Trojan designed to steal financial and account information is spreading fast.
"It started yesterday, with more than 50 customers of ours receiving this e-mail and we've been targeted ourselves," says Mickey Boodaei, CEO of security firm Trusteer.
The e-mail-based attack is customized to fool employees in each enterprise it's sent to, with the "from" address appearing to come from within the enterprise, asking the recipient on behalf of the systems administrator to modify their e-mail settings for Outlook Webmail as a result of an upgrade.
[ Also on Networkworld.com: Trojan attacks up, phishing attacks down ]
Though the link appears to be to the enterprise Outlook Web Access site, it's actually a Web site in Chile, Columbia, Romania or Russia that's craftily trying to get the victim to download a file that's the dangerous Zeus/Zbot Trojan, says Boodaei.
The Zeus Trojan is well-known—it's part of the fake IRS web site e-mail scam sweeping into mailboxes at present.
Using an isolated computer, Trusteer downloaded the Zeus Trojan to see how it would work in the case of these phishing messages and found the attack involves keeping track of what everyone who receives it might do. "It even sends a follow-up e-mail that says "you didn't complete the process,'" Boodaei notes. Trusteer points out that warding off this type of attack against employees entails educating them about phishing and blocking download of executable and zip files from the Web.
Network World
Sign up for ITworld's Daily newsletter
Follow ITworld on Twitter @IT_world
On Twitter now
Network World
Powered by Twitter
Esther Schindler
If the comments are ugly, the code is ugly
claird
SVG a graphics format for 21st century
pasmith
Take Chrome OS for a test spin
Sandra Henry-Stocker
Solaris Tip: Have Your Files Changed Since Installation?
jfruh
Android fragments vs. the iPhone monolith
mikelgan
What Gizmodo missed about the Pro WX Wireless USB disk drive
Sidekick: The Good News & the Bad News
Either way you look at it Microsoft Data Center management did not follow standards or best practices in this failure. In which case it makes me wonder more about the outsourcing of corporate data much less personal data.
- mburton325
Join the conversation here
Quick, practical advice for IT pros. Made fresh daily.
Want to cash in on your IT savvy? Send your tip to tips@itworld.com. If we post it, we'll send you a $25 Amazon e-gift card.
