Fake White House Christmas card hid malware

Elinor Mills, CNET News | January 6, 2011 4:57 AM PST

Summary

An email that appeared to be a holiday greeting from the White House instead hid malware that stole data

Topics

Card, White House, Malware, Zeus, Cyberthreats, Viruses And Worms, Security, Spyware, Adware & Malware

Vendor HotSpot

The 360° Conversation around Cloud Computing

TECH VISUALIZER brings the social conversation to life... powered by Brocade

Learn More »

An email sent to an unknown number of government employees and contractors two days before Christmas appeared to be a holiday greeting from the White House but instead hid malware that stole data.

The innocent-looking holiday e-greeting prompted recipients to click to view the card, but when the file was opened, malware known as "Zeus" was downloaded to the computer, according to reports. Zeus is known as a banking Trojan horse designed to steal passwords and online credentials, mostly for financial fraud.

In this attack, PDFs, as well as Microsoft Word and Excel documents, were stolen and surreptitiously uploaded to a server in Belarus, according to the Krebs on Security blog, which reported the attack earlier this week.

For more on this story, read Malware in fake White House e-card steals data on CNET News.

Comments

Add Your Opinion

Join the conversation!

Follow via:: RSS; Email Alert

Just In

Who said it was a fake?

zmud 6th Jan 2011

I'm sending it out to all 57 states
happy kwanza
Bar rock

View in thread

Please Select
Please Select

0 Votes

+ -

RE: Fake White House Christmas card hid malware

ClickRepairNow Updated - 6th Jan 2011

Crooks are pretty bold these days.

http://clickrepairnow.com

Reply
Flag

0 Votes

+ -

I Would Like to Know How this Worked

CFWhitman 6th Jan 2011

Is this something that exploited the fact that Windows hides extensions by default? Did it use some vulnerability in Java or Flash or in a common file format like PDFs? It would be nice to know exactly where the security broke down.

Reply
Flag

0 Votes

+ -

Who said it was a fake?

zmud 6th Jan 2011

I'm sending it out to all 57 states
happy kwanza
Bar rock

Reply
Flag

Join the conversation!

Subject (Max length: 75 characters)

Formatting + Comment

BB Codes - Note: HTML is not supported in forums

[b] Bold [/b]
[i] Italic [/i]
[u] Underline [/u]
[s] Strikethrough [/s]
[q] "Quote" [/q]

[ol][*] 1. Ordered List [/ol]
[ul][*] · Unordered List [/ul]
[pre] Preformat [/pre]
[quote] "Blockquote" [/quote]

The best of ZDNet, delivered

ZDNet Newsletters

Get the best of ZDNet delivered straight to your inbox

Vendor Showcase

TECH VISUALIZER Sponsored by Brocade

ZDNet is available in the following editions:

Special Reports

Windows 8 revealed

The Great Debate

Tech Visualizer

ZDNet 20th Anniversary Special

Holiday Tech Gift Guide

Hot Topics

Fake White House Christmas card hid malware

Summary

Topics

Vendor HotSpot

The 360° Conversation around Cloud Computing

Join the conversation!

Just In

Who said it was a fake?

RE: Fake White House Christmas card hid malware

I Would Like to Know How this Worked

Who said it was a fake?

Join the conversation!

The best of ZDNet, delivered

ZDNet Newsletters

Vendor Showcase

Facebook Activity

Featured Articles

Top Productivity Apps for the iPad 3

Facebook Lockdown: The Definitive Guide

A power user's guide to Windows 8

Love stinks: The worst mergers in tech

Services