Now we have an apparent “kitchen sink” Trojan and virus attack where the spammers are throwing multiple attack vectors within the same campaign and are just hoping something sticks.
The emails are sent from a remarkably wide variety of infected mail servers and individual personal computers spanning the globe. They are spoofing everything from completely random email addresses to claiming to come from the recipient’s own email account.
What is consistent within the current campaign now circulating is that they will include your domain in the subject line, followed by the phrase “account notification” such as:
Subject: yourdomain.com account notification
The contents of the email will contain the following, with your email account domain inserted in order to increase the credibility and to also attempt to evade spam filtering systems:
Dear Customer,
This e-mail was send by yourdomain.com to notify you that we have temporanly prevented access to your account.
We have reasons to beleive that your account may have been accessed by someone else.
At this point, the emails will instruct you in one of two ways:
Please run this file and Follow instructions:
or
Please run attached file and Follow instructions:
Some of the messages will link to an executable file such as:
http://mailservicesss.bravehost.com/settings.exe
Others will link to a compressed version which they want you to download and then run, for example:
http://emailsupport.zxq.net/settings.zip
Still others will will have the following files attached to the message itself:
- settings.zip
- settings.exe
In every case, the files and links are male-ware and if run it will infect your computer, adding it to the spammer’s bot-net and under their control.
- -
OnlyMyEmail is an award winning hosted spam filtering service and business email hosting provider. Our enterprise cloud computing anti-spam solution, the MX-Defender, has the highest capture rate of any spam filter ever tested in the VBSpam Challenge, blocking a record setting 99.9993% of all malicious and junk email.
Our Personal spam filtering system is also a Software as a Service (SaaS) solution and has won both the PC World "World Class Award" and also the PC Magazine "Editor's Choice Award."
OME-Kids is a webmail solution that protects children from spam and other harmful emails. OME-Kids offers unique Parental Controls that allow you to choose the level of security and oversight that's right for your child.
Related posts:
