Valentine’s Day attracts malicious spam
Posted on 11 February 2009.
Spammers are gearing up for Valentine’s Day with an influx of unsolicited advertising, but are also getting in early with a wave of sinister e-mail messages designed to infect hopeful Valentine’s recipients with malware instead of warm feelings say experts from the Marshal8e6 TRACE Labs.

The exploitation of Valentine’s Day by spammers has become an annual event as advertisers attempt to pawn everything. However, Valentine’s Day also gives spammers the perfect opportunity to spread malware and grow their botnets as optimistic Valentine recipients actually look forward to opening messages from perfect strangers.

The Waledec spammers declared their intentions early with a surge of love-themed malicious spam messages circulated in January. Now Waledec is distributing Valentine’s specific spam with subject lines such as “a Valentine card from a friend” and “you have received a Valentine E-card”. The messages, a classic blended threat e-mail attack, suggest that you have been sent a special Valentine’s Day message from a secret admirer and require you to click on a URL link to retrieve your message. Clicking on the link downloads malware instead.

Romantic but dangerous, the Waledec spammers want you to click on this email and infect your computer with their botnet

Two other rival spam botnets have also adopted similar tactics with the Donbot botnet suggesting “someone thinks you are very special and has sent you a kiss”. The Pushdo spammers have an even simpler message, asking you to “prepare for Valentine’s Day” and “be ready”.

The Waledec botnet is widely considered by security researchers to be the latest incarnation from the same spam gang that brought us the notorious Storm botnet. So far, Waledec has failed to reach the same level of size and infection that Storm achieved, but this latest Valentine’s Day malicious spam is specifically designed to grow the botnet and increase the spammer’s capability to send even more spam.


Harnessing artificial intelligence to build an army of virtual analysts

PatternEx, a startup that gathered a team of AI researcher from MIT CSAIL as well as security and distributed systems experts, is poised to shake up things in the user and entity behavior analytics market.

Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.

Daily digest

Receive a daily digest of the latest security news.

Tue, Feb 9th