Spammers Fake Responses from Google Job Applications (February 3, 2010)

A new spam campaign gives the phrase “too good to be true” a whole new spin: spammed messages purporting to come from Google in response to job applications. While most spammed messages take advantage of a specific special occasion,

Spammers Target Antivirus Companies (March 1, 2010)

A new wave of spammed messages posing as mail service notifications targeted antivirus companies, including Trend Micro. These messages ask the receivers to update their mailbox settings by opening and executing the attachment.

Spammers Spoof the Apple Store (March 25, 2010)

Cybercriminals—spammers, to be specific—typically hide their malicious intent behind well-known company names. Just recently, TrendLabs engineers encountered a spammed message claiming to be from the Apple Store.The email message encouraged

Do They Know it’s (not) Christmas Time at All? (February 19, 2010)

Spammers Celebrate Mothers’ Day (May 5, 2010)

May 9 is Mothers’ Day for most countries all over the world. As a perfect gift on this particular holiday, spammers decided to honor mothers by spamming e-cards from supposedly legitimate greeting card companies to distribute their malicious wares. Figure

Spammers Fake Responses from Google Job Applications (February 3, 2010)

Spammers Target Antivirus Companies (March 1, 2010)

Spammers Spoof the Apple Store (March 25, 2010)

Do They Know it’s (not) Christmas Time at All? (February 19, 2010)

Spammers Celebrate Mothers’ Day (May 5, 2010)

Christmas Greetings from Spammers

Friday, December 25, 2009, 19:30
Threat Research

Spammers are clearly putting the holidays to good use, as they have made Christmas just another reason to spread malware.

Trend Micro threat analysts recently received a spammed message purporting to come from 123greetings.com, a legitimate site that users can access to send e-cards to family and friends. The email message even sported the site’s logo (see Figure 1).

However, upon further investigation of the spammed message’s header, we noticed that the sender’s IP address (see Figure 3) did not match that of the legitimate 123greetings.com site (see Figure 2).

The spammed message urges the user to download and open the .ZIP file attachment (see Figure 4), which is actually an .EXE file detected by Trend Micro as WORM_PROLACO.Z (see Figure 5), in order to view the greeting card.

In addition, according to 123greetings.com, the e-cards sent from the site are stored on 123greetings.com servers and so should not be attached to emails. In other words, to view e-cards sent from the site, users do not need to download anything.

To keep your system malware-free this festive season, do not open unsolicited email messages. Be smart, use an effective security

Source: TrendLabs | Malware Blog - by Trend Micro

Related Posts
Comments

The
Security
Blog

Similar Searches

Spammers Fake Responses from Google Job Applications (February 3, 2010)

Spammers Target Antivirus Companies (March 1, 2010)

Spammers Spoof the Apple Store (March 25, 2010)

Do They Know it’s (not) Christmas Time at All? (February 19, 2010)

Spammers Celebrate Mothers’ Day (May 5, 2010)

Related News

Spammers Fake Responses from Google Job Applications (February 3, 2010)

Spammers Target Antivirus Companies (March 1, 2010)

Spammers Spoof the Apple Store (March 25, 2010)

Do They Know it’s (not) Christmas Time at All? (February 19, 2010)

Spammers Celebrate Mothers’ Day (May 5, 2010)

Latest News

Malicious Search Suggestions with Google Instant

0-day for Adobe Reader 9.3.4

Return of the Unpublished Adobe Vulnerability

Adobe PDF Zero-Day Exploit Discovered in the Wild

Social Engineering – A Threat Vector

Christmas Greetings from Spammers

Write a Comment

Latest News

Latest Comments

Site Pages

TheSecurityBlog

Similar Searches

Related News

Latest News

Christmas Greetings from Spammers

Write a Comment

Latest News

Latest Comments

Site Pages

The
Security
Blog