Merit Network
 Can't find what you're looking for? Search the Mail Archives.
  About Merit   Services   Network   Resources & Support   Network Research   News   Events   Home

Discussion Communities: Merit Network Email List Archives
Network Security
Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical FW: [ISN] Botnet Unleashes Variety Of New Phishing Attacks

  • From: Howell, Paul
  • Date: Wed Oct 21 09:02:48 2009 

-----Original Message-----
From: isn-bounces@infosecnews.org [mailto:isn-bounces@infosecnews.org]
On Behalf Of InfoSec News
Sent: Tuesday, October 20, 2009 3:17 AM
To: isn@infosecnews.org
Subject: [ISN] Botnet Unleashes Variety Of New Phishing Attacks 

http://www.darkreading.com/security/vulnerabilities/showArticle.jhtml?ar
ticleID=220700200

By Kelly Jackson Higgins
DarkReading
Oct 19, 2009

The massive Zbot botnet that spreads the treacherous Zeus banking Trojan

has been launching a wave of relatively convincing phishing attacks 
during the past few days -- the most recent of which is a phony warning 
of a mass Conficker infection from Microsoft that comes with a free 
"cleanup tool."

The wave of attacks began early last week targeting corporations in the 
form of email messages that alerted victims of a "system upgrade." Email

is accompanied by poisoned attachments and links; in some cases it poses

as a message from victims' IT departments, including their actual email 
domains, and alerts them about a "security upgrade" to their email 
accounts. The message then refers victims to a link to reset their 
mailbox accounts, and the link takes them to a site that looks a lot 
like an Outlook Web Access (OWA) page (PDF), but instead infects them 
with the Zeus Trojan.

Today, researchers at F-Secure spotted the botnet spamming out 
malware-laden email that tries to trick recipients with a convincing 
lure messages that says, "On October 22, 2009 server upgrade will take 
place."

"What we're seeing is an evolving campaign of different lures to see 
which one works," says Richard Wang, manager of Sophos Labs in the U.S.

The Zbot botnet, which is made up of 3.6 million PCs in the U.S., or 1 
percent of all PCs in the country, according to data from Damballa, 
spreads the deadly Zeus Trojan. Zeus, which steals users' online 
financial credentials, represents 44 percent of all financial malware 
infections today, according to Trusteer.

[...]



------------------------------------------------------------------------
To unsubscribe from netsec, send mail to majordomo@merit.edu
with a body consisting of the words "unsubscribe netsec" --
without the quotes. For more help, send a message to majordomo@merit.edu
with the word "help" as the body.
------------------------------------------------------------------------


Discussion Communities


About Merit | Services | Network | Resources & Support | Network Research
News | Events | Contact | Site Map | Merit Network Home


Merit Network, Inc.