Obama-related spammed trojan propagating worldwide

Obama-related spammed trojan propagating worldwide

Summary: Several security companies including F-Secure, Sunbelt, and my employer Cloudmark (disclosure) are reporting a large volume of Obama-related spam that links to malware. This is just the latest twist on the long-running theme of social engineering end users into installing web-based malware.

SHARE:
TOPICS: Security
13

Several security companies including F-Secure, Sunbelt, and my employer Cloudmark (disclosure) are reporting a large volume of Obama-related spam that links to malware. This is just the latest twist on the long-running theme of social engineering end users into installing web-based malware.

The lures consist of e-mails with subject lines like:

Obama win preferred in world poll Can Obama win popular vote but lose election? New president's Will American Voters Elect a Black President Election Night Results

The message body does not vary much:

Barack Obama Elected 44th President of United States

Barack Obama, unknown to most Americans just four years ago, will become the 44th president and the first African-American president of the United States. Watch His amazing speech at November 5!

Proceed to the election results news page>>

2008 American Government Official Website This site delivers information about current U.S. Foreign policy and about American life and culture.

Jamie Tomasello, manager of the security operations center at my employer Cloudmark (disclosure) has estimated the prevalence of this particular spam strain to be on the order of tens of millions. Given the lure's low rate of content mutation, anyone with a decent spam filter should be able to catch the spam.

As I have said before, the malware-lure style spam will likely never go away. The snap desire innate in all of us to look at alarming news will always provide an opportunity for attackers to exploit desktop systems. Our only chance at preventing this style of attack in the future is solid anti-spam and a massive improvement in the state of anti-virus technology as it exists today.

Topic: Security

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

13 comments
Log in or register to join the discussion
  • Funny this should come up...

    I have already recieved over a dozen of these today. All have gone straight to deleted.
    bobjones68@...
    • deleted

      wow a smart one lol
      excellent
      Monosdeja
    • RE: delete

      lol same here. my one spam inbox is a home for all the crap like this in the world
      Linux uSer
  • ?

    SWEET!

    not

    lock them up throw away the key
    Monosdeja
  • RE: Obama-related spammed trojan propagating worldwide

    that is 60+ million? system infected
    Monosdeja
  • Nothing surprising there...

    It's a well known fact that spammers use popular current events to entice people to click on their links.

    If Lindsay Lohan were to run over a paparazzi tomorrow, by tomorrow afternoon there would be spam saying things like "Lindsay Lohan's Hit and Run video - click here."

    The solution is simple. DON'T OPEN IT, JUST DELETE IT.
    eMJayy
    • I'll open it...

      Malware is never written for Linux, so no problem.
      There is no Anti-Virus software for Linux because there is no malware for Linux.
      epcraig
      • Give it time

        Careful for what you wish for!!
        ZenWarp
  • RE: Obama-related spammed trojan propagating worldwide

    Wow, I think this is descirbed in another article i read as Pump and Dump spam.
    JonB2008
    • Pump and Dump is different

      Pump and dump is a stock specific scam spam. The intent is to get people to buy a company's stock so as to drive up the price - then, the spammer/scammer can sell at an inflated price.

      I have yet to see pump and dump linked with malware (though I'm sure it has happened) - it's more of a financial scam.
      Lizzie_B
  • RE: Obama-related spammed trojan propagating worldwide

    Kind of like his politics
    pocketchalker@...
  • RE: Obama-related spammed trojan propagating worldwide

    kind of like his politics
    pocketchalker@...
  • RE: Obama-related spammed trojan propagating worldwide

    Great!!! thanks for sharing this information to us!
    <a href="http://www.yuregininsesi.com">seslisohbet</a> <a href="http://www.yuregininsesi.com">seslichat</a>
    birumut