Trend Micro Facebook TrendLabs Twitter Malware Blog RSS Feed You Tube - Trend Micro
Search our blog:

  • Recent Posts

  • Calendar

    July 2014
    S M T W T F S
    « Jun    
     12345
    6789101112
    13141516171819
    20212223242526
    2728293031  
  • About Us
    TrendLabs Security Intelligence Blog(breadcrumbs are unavailable)

    Author Archive - Jona Pereira (Anti-spam Research Engineer)




    Cybercriminals are known to take advantage of sporting events like the London Olympics 2012 for their malicious activities. Some of the attacks that leveraged this event include fake live streaming websites, fraudulent sites that sell bogus tickets, and malicious Olympics-related app hosted in a fake Google Play store.

    Adding to the list of attacks using the ongoing Games as bait, Trend Micro researchers spotted spammed messages that contain news on a supposed scandal involving US gymnast Gabrielle Douglas. This is used as bait to lure users into clicking the malicious URL contained in these messages. Once unsuspecting users click the link, they are redirected to a fake YouTube page, requiring victims to download the latest version of Adobe Flash Player to view the said video.

    The spammed message contains different compromised URLs, but all leads to the download of the file adobe-flashplayer-update.exe, which Trend Micro detects as TROJ_DROPPR.HR.

    Trend Micro protects users from this spam run via its Smart Protection Network™, detecting and blocking the malicious file and spam. Use caution when opening email messages. Refrain from clicking links on messages, specially from unknown senders. To get your updates on Olympics-related news, we recommend using legitimate news sites, accessed via your own bookmarks.

    To know more about other threats that target London 2012 Olympics fans and viewers, you can visit Race to Security, the Trend Micro security guide to major sporting events such as the Olympics, by clicking the banner below:

    Update as of August 8, 2012, 12:34 AM PST

    Related malware TROJ_DROPPR.HR has been renamed to TROJ_DLOAD.BTN. TROJ_DLOAD.BTN sends out email messages containing links that lead to a copy of a itself.

     
    Posted in Malware, Spam | Comments Off



    Even after a few weeks following Steve Jobs’ death, spammers are still taking advantage of his demise. We have previously reported about this in the following blog entries:

    This time, we received sample spammed messages promoting a supposed charity fund for young and gifted programmers and Web coders in honor of the late Apple co-founder.

    Click for larger view

    Written in plain text, the said message aims to persuade recipients to donate funds to the account indicated in the mail. However, we discovered that it turns out to be an account for an online casino payment site.

    Trend Micro strongly advises users to be wary of such messages and avoid disclosing important information to unknown websites. Readers may also refer to our blog entry A Refresher on Spam and Exploits to understand why basic mitigation practices with regard to spammed messages are still effective and can help them protect themselves from today’s threats.

     
    Posted in Spam | TrackBacks (8) »


     

    © Copyright 2013 Trend Micro Inc. All rights reserved. Legal Notice