• Trend Micro
  • About TrendLabs Security Intelligence Blog
Search:
  • Home
  • Categories
    • Ransomware
    • Vulnerabilities
    • Exploits
    • Targeted Attacks
    • Deep Web
    • Mobile
    • Internet of Things
    • Malware
    • Bad Sites
    • Spam
    • Botnets
    • Social
    • Open source
Home   »   Malware   »   SMS Spam? Not Quite

SMS Spam? Not Quite

  • Posted on:October 23, 2008 at 9:01 pm
  • Posted in:Malware, Spam
  • Author:
    Bernadette Irinco (Technical Communications)
0

If there’s one thing that security experts and spammers share in common, it’s that they both think outside the box. Time and time again, we see spammers come up with new techniques or even recycle old tactics just to effectively lure users.

And this is no exception…

Trend Micro Advanced Threats Researcher Loucif Kharouni discovered a spammed email message supposedly coming from TIM Brazil, a popular mobile company in the country. What’s interesting about the message is that appears to be sent via SMS or Short Message Service. Here’s a sample email message:


Figure 1. Sample of TIM Brazil spam

This message tricks users into clicking a link to view a certain video. Users who click on the said link unknowingly download a CPL file detected by Trend Micro as TROJ_DLOAD.KW or another malicious file detected as TROJ_DLOAD.KY. Both files are hosted on the URL hxxp://{BLOCKED}r.alice.it. Here’s a screenshot of the page where the files are hosted:


Figure 2. The link in the email message leads users to this page.

Kharouni says this is the first time he has encountered this type of spam. He believes that the messages were just faked to look like they were sent via SMS. This may be a cause of concern as this social engineering technique shows a crossover between the use of both mobile devices and the Web as infection vectors. SMS spam used to propagate only through mobile devices before. Though the spammed messages in this run do not appear to be sent through SMS, spammers may now be going to that direction.

The Trend Micro Smart Protection Network already blocks the email messages involved in this spamming operation. It also detects TROJ_DLOAD.KW and TROJ_DLOAD.KY and provides solution for their cleanup and removal. Users are strongly advised to be wary of clicking links in unexpected email messages, even if they seem to be sent by legitimate sources.

Other threats related to mobile devices:

  • Cellphone Peeping Tom
  • Target: UIQ + Symbian Mobile Devices
Learn how to protect Enterprises, Small Businesses, and Home Users from ransomware:
ENTERPRISE »
SMALL BUSINESS»
HOME»
Tags: Malwaremobile devicesSMS spam

Security Predictions for 2020

  • Cybersecurity in 2020 will be viewed through many lenses — from differing attacker motivations and cybercriminal arsenal to technological developments and global threat intelligence — only so defenders can keep up with the broad range of threats.
    Read our security predictions for 2020.

Business Process Compromise

  • Attackers are starting to invest in long-term operations that target specific processes enterprises rely on. They scout for vulnerable practices, susceptible systems and operational loopholes that they can leverage or abuse. To learn more, read our Security 101: Business Process Compromise.

Recent Posts

  • Our New Blog
  • How Unsecure gRPC Implementations Can Compromise APIs, Applications
  • XCSSET Mac Malware: Infects Xcode Projects, Performs UXSS Attack on Safari, Other Browsers, Leverages Zero-day Exploits
  • August Patch Tuesday Fixes Critical IE, Important Windows Vulnerabilities Exploited in the Wild
  • Water Nue Phishing Campaign Targets C-Suite’s Office 365 Accounts

Popular Posts

Sorry. No data so far.

Stay Updated

  • Home and Home Office
  • |
  • For Business
  • |
  • Security Intelligence
  • |
  • About Trend Micro
  • Asia Pacific Region (APAC): Australia / New Zealand, 中国, 日本, 대한민국, 台灣
  • Latin America Region (LAR): Brasil, México
  • North America Region (NABU): United States, Canada
  • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Österreich / Schweiz, Italia, Россия, España, United Kingdom / Ireland
  • Privacy Statement
  • Legal Policies
  • Copyright © Trend Micro Incorporated. All rights reserved.