Until the senderid gets locked down we will have this unrelenting issue.
Lock-down how: PGP/GNuPG
Encouraged/Mandated by: Federal Law, if enacted.
Make part and parcel part of a email encryption privacy protection act.
ISPs would then act based on the presence or absense of a signed certificate on each email:
If absent, shunt to off-line
If present, forward to recipient.
In this week’s Malware Watch we’ll review three currently active and spreading malware campaigns.
In the first campaign, malicious attackers are attempting to trick end users into downloading and executing a malicious file attachment, while impersonating the U.S Chamber of Commerce.
According to AppRiver, the malicious attachments USChamber.zip are actually a copy of the ZeuS crimeware.
Spamvertised message:
Hello, on the advice of your partners, we are sending you this letter. In the attached file you will find the offer of cooperation and common development of adjacent areas of our business. Thank you for your attention.
The second campaign is impersonating DHL for malware-serving purposes.
Spamvertised message:
Dear Sir/Madam,Your package has been returned to the DHL office. The reason of the return is – Error in the delivery addressPlease refer to attached file for additional detailsAttached to the letter mailing label contains the details of the package delivery. You have to print mailing label, and come in the office in order to receive the packages.Thank you for attention.Your DHL
Detection rate for the malicious attachment.
The third campaign is impersonating the Internal Revenue Service for malware serving purposes.
Tax notice, There are arrears reckoned on your account over a period of 2010-2011 year. You will find all calculations according to your financial debt, enclosed. Sincerely, Internal Revenue Service
Detection rate for the malicious attachment.
