iTnews
  • Home
  • News
  • Technology
  • Security

Cyber-criminals unleash spam Storm

By Robert Jaques
Aug 23 2007 7:36AM
Follow google news

Security experts have warned of an outbreak of malicious spam emails that use log-in account confirmation details as a hook to get users to visit an infected website.

Cyber-criminals unleash spam Storm
The Marshal TRACE threat research team said that the emails appear to come from a legitimate organisation and provide recipients with temporary log-in confirmation details for a website.

The spam uses text like 'for security purposes, please login and change the temporary Login ID and Password', and include a link to an IP address which is in fact a website infected with the Storm Trojan.

The messages appear to come from the technical support departments of a range of organisations with names designed to generate interest among the public, such as 'Joke-A-Day' and 'Web Players'. The links appear as a numerical IP address rather than a URL.

"We are seeing significant volumes of 'confirmation spam' hitting inboxes," said Bradley Anstis, director of product management at Marshal.

"This outbreak is the latest in a string of social engineering tactics used by the same individuals responsible for the Storm Trojan to propagate their botnet.

"These criminals are clever and highly adaptive. This is simply their latest attempt to fool unsuspecting email users into infecting themselves."

The Storm Trojan first appeared in January 2007. It quickly achieved success and notoriety by using the guise of current affairs headlines to fool unsuspecting recipients into clicking on a link which led to the Trojan.

Examples of the headlines used included 'Saddam Hussein alive!' and 'Chinese missile shot down by USA aircraft'.

Since then the criminals behind the Trojan have used greeting cards to infect computers with subjects ranging from the 4th of July to Thank You cards.

"The 'confirmation spam' outbreak has been launched by the same group that launched the Hot Pictures spam campaign earlier in the week," said Anstis.

"Previously these spam campaigns, like the greeting card campaign, would last for weeks at a time. Now, spammers are modifying or launching new spam campaigns almost daily.

"Our advice to anyone who receives a message like this from a person they do not know, or have not heard from for a long time, is to delete it without opening it.

"Certainly, do not click on the link in the message and do not click 'OK' if it asks to download a file."

Further details and advice on the Storm Trojan can be found on Marshal's TRACE Center website.

Add iTnews as your trusted source

Add iTnews As Your Trusted Source Add iTnews As Your Trusted Source
Got a news tip for our journalists? Share it with us anonymously here.
Copyright ©v3.co.uk
Tags:
cybercriminalssecurityspamstormunleash

Related Articles

  • Marathon OAIC investigation finds Optus breached 51,000 customers' privacy Marathon OAIC investigation finds Optus breached 51,000 customers' privacy
  • US gov shortens cyber fix window to three days US gov shortens cyber fix window to three days
  • Anthropic releases Mythos-class model for public use Anthropic releases Mythos-class model for public use
  • Apple bumps up security in fresh operating system releases Apple bumps up security in fresh operating system releases
Join our WhatsApp Channel

Partner Content

You meet the security standard. Shame no one can see it
Promoted Content You meet the security standard. Shame no one can see it
Onel Consulting Strengthens Its White-Glove Services With Strategic COO Appointment
Promoted Content Onel Consulting Strengthens Its White-Glove Services With Strategic COO Appointment
Scalable AI solutions: secure delivery
Scalable AI solutions: secure delivery
Take control of your connectivity with Telstra’s Adaptive Networks Centre
Partner Content Take control of your connectivity with Telstra’s Adaptive Networks Centre

Sponsored Whitepapers

When cyber risk has no clear owner: A practical guide for senior Australian business leaders
When cyber risk has no clear owner: A practical guide for senior Australian business leaders
Agile in the AI Era: why projects still fail
Agile in the AI Era: why projects still fail
When Technology Becomes the Blocker: Unlocking Real Outcomes from AI and Cloud
When Technology Becomes the Blocker: Unlocking Real Outcomes from AI and Cloud
High-volume data sources for AI-driven security analytics
High-volume data sources for AI-driven security analytics
How healthcare organisations can get more value from cloud
How healthcare organisations can get more value from cloud

Events

  • iTnews State of Security Breakfast iTnews State of Security Breakfast
  • iTnews State of Data & AI Breakfast iTnews State of Data & AI Breakfast
  • Forrester's AI Forum Sydney Forrester's AI Forum Sydney
  • The 2026 iAwards The 2026 iAwards
  • Integrate 2026 Integrate 2026
Share on Facebook Share on LinkedIn Share on Whatsapp Email A Friend

Most Read Articles

Anthropic opens Claude Mythos Preview AI program to Australia

Anthropic opens Claude Mythos Preview AI program to Australia
Defence says Palantir is "sandboxed" in its environment

Defence says Palantir is "sandboxed" in its environment
Services Australia describes fraud, debt-related machine learning use cases

Services Australia describes fraud, debt-related machine learning use cases
Researchers build self-replicating AI worm with BYO LLM

Researchers build self-replicating AI worm with BYO LLM
techpartner.news logo
Sydney-based AI-cloud waste startup raises $3m
Sydney-based AI-cloud waste startup raises $3m
Brennan uses NiCE to modernise its contact centre
Brennan uses NiCE to modernise its contact centre
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Interactive introduces private cloud platform
Interactive introduces private cloud platform
Digital61 expands cybersecurity portfolio
Digital61 expands cybersecurity portfolio
All rights reserved. This material may not be published, broadcast, rewritten or redistributed in any form without prior authorisation.
Your use of this website constitutes acceptance of nextmedia's Privacy Policy and Terms & Conditions.