IE7 used as phishing lure

Spam campaign tries to hook users with new browser version.

A spam campaign has been spotted using the latest version of Microsoft's web browser, Internet Explorer 7, as bait.

The spammed mails contain spoofed sender information trying to fool recipients into believing they originate from Microsoft tech support, and offer free downloads of the latest beta version of the browser.

However, when links in the mails are followed to a convincing spoof of a Microsfot download site, a version of the Win32/Small trojan is installed to vulnerable machines using drive-by download exploits. The trojan then proceeds to open backdoors, giving remote attackers access to the infected machine.

An advisory from Surfcontrol can be found here.

19 October 2006

Tags: spam

del.icio.us

digg this

News


	Microsoft to publish security bulletins in CVRF format Standard will streamline process of reviewing patches. 22 May 2012 FBI warns against malware installed via hotel networks Malware poses as fake update of popular software. 09 May 2012 May issue of VB published The May issue of Virus Bulletin is now available for subscribers to download. 3 May 2012 Android malware served via compromised websites Malware downloaded automatically, but requires user permission to be installed. (1 comment) 03 May 2012 PayPal spam leads to exploit kit Clicking on links leads to Blackhole rather than phishing site. 02 May 2012 Subscribe \| View All virusbtn: Google will start warning users still infected with the DNSChanger trojan http://t.co/AgVvG9uh 50 minutes ago virusbtn: And this is what our website looked like back then http://t.co/trZGa44E 1 hour ago Follow us

News Archive


	2012 December November October September August July June May April March February January 2011 2010 2009 2008 2008 2007 2006 2005 2004 2003 2002 Subscribe \| View All