Virus Bulletin news tweets spread malware
Posted on 10.10.2011
Malware peddlers are known for using news of unfolding events as lures to trick curious users into clicking on an offered malicious link. This practice is most often seen on Twitter, which is used by many to keep tabs on the latest happenings in the world.

One of the latest examples of this approach has taken advantage of the users' interest in news from the latest Virus Bulletin Conference that took place last week in Barcelona:


The link took them to a page serving a downloader Trojan (VB2011.exe) that tries to download another executable (Installation.exe).

According to Bitdefender, once this installer is launched the process cannot be stopped, and the machine is now open to additional infection from malware downloaded from other malware-laden domains.

But this particular attack is anything but stealthy. While the installation is ongoing, the Internet Explorer browser is made to open a number of pages with adware, gameware and adult content, and shortcuts to those pages are also placed on the desktop.

Since most of the people who are interested in news from the VB Conference are likely to be security professionals or at least security-minded individuals, such a bombastic invasion is sure to be noticed and dealt with immediately.

To my mind, there are only two explanations: either the malware peddlers haven't really thought this thing through, or the blustering approach is meant to hide the installation of a piece of malware they are sure won't be detected by the majority of AV solutions out there.

Needless to say, I hope it's the former.






Spotlight

Biggest ever cyber security exercise in Europe is underway

Posted on 30 October 2014.  |  More than 200 organisations and 400 cyber-security professionals from 29 European countries are testing their readiness to counter cyber-attacks in a day-long simulation, organised by the European Network and Information Security Agency (ENISA).


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Thu, Oct 30th
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //