Storm worm version uses China earthquake to lure victims

By Elinor Mills, CNET News.com
Friday, June 20, 2008 10:25 AM

If you want information about the earthquake in China get it from a news site and not from a link to a video that arrives in your e-mail inbox.

That's the message from the US-CERT (Computer Emergency Readiness Team) on Thursday.

US-CERT has received reports of a new variant of the Storm Worm that targets people interested in the May 12 earthquake that killed nearly 70,000 people and left 5 million homeless. Some of the e-mail messages also have subject lines that deal with the Olympic Games that China is hosting.

In the e-mail is a link that sends a recipient to a malicious Web site, US-CERT says. Opening the purported video link on the site runs executable code that infects the computer with malicious code that can be used to turn the machine into a zombie on a spam botnet.

Previous versions have used April's Fools Day and Valentine's Day themes, as well as masqueraded as a fix for another worm to lure victims to sites.

As always, computer owners and administrators are urged to install and update anti-virus software and to not follow unsolicited Web links received in e-mail messages.

This article was first published as a blog on CNET News.com.


WORTHWHILE?

0

0 votes
Blog

Talkback 0 comments

There are currently no comments for this post.


Tech Jobs Now!

Search for your ideal tech job:

Use shades of gray to enhance scale in Excel

Microsoft Office Suite

Excel's palette is generous, but don't throw buckets of pigment all over your spreadsheets just because you can.


Read more »



Ultimate 2012 recovery site: the moon

Blog thumbnail

Have you seen the disaster movie "2012"? A friend from Control Risks and I did, and we reluctantly concluded we wouldn't be able to write off the cost of our..... by Nathaniel Forbes

Read more »

Tags

  1. attack
  2. authentication and encryption
  3. blog
  4. data security
  5. e - mail
  6. hacking
  7. internet
  8. malware
  9. microsoft corp.
  10. network
  11. network security
  12. pc security
  13. researcher
  14. security
  15. security management
  16. software
  17. spam and phishing
  18. symantec corp.
  19. viruses and worms
  20. web