Dref-N email worm promises breaking news

By

Juicy news 'headlines' contain nasty payload.

Dref-N email worm promises breaking news
A new email worm is using bogus news headlines to lure users into opening its payload, security firm Sophos has warned. 

The emails contain links to headlines such as the 'outbreak of nuclear war' and the 'death' of George W Bush and Vladimir Putin to allow hackers to infect computers and steal information.

The Dref-N worm arrives attached to emails with subject lines such as 'White house news!', 'Incredible news' or 'ATTN TO EVERYBODY!', and tries to dupe recipients by claiming that the attachment contains details of a major global news story.

Opening the attached file disables the Windows firewall and allows hackers to gain access to the PC in order to spy on or steal data.

"Users may think that they are receiving these emails from their friends, family and colleagues, but in fact it is a worm that has infected the sender's computer and distributed the message," said Graham Cluley, senior technology consultant at Sophos.

"While many of these news hooks may sound totally implausible, it is amazing how many users still allow temptation to get the better of them, and click on the infected file.

"The simple advice is that if you suspect a breaking news story, turn on the TV or visit your favourite news website to see if it has any basis in truth."

Sophos said that the text of the email could include any of the following:

'3rd Glogal War Just Started!!! Read more in file!'
'Nuclear War in Russia! Read news in file!'
'President Bush DEAD! Read attached file!'
'Putin and Bush starts NUCLEAR WAR! Check the file!'
'Nuclear WAR in USA! Read attached file!'
'GLOBAL NUCLEAR WAR JUST STARTED! News in file.'
'President Putin dead! Read more in attached file!'
Got a news tip for our journalists? Share it with us anonymously here.
Copyright ©v3.co.uk
Tags:

Most Read Articles

India's alarm over Chinese spying rocks CCTV makers

India's alarm over Chinese spying rocks CCTV makers

Hackers abuse modified Salesforce app to steal data, extort companies

Hackers abuse modified Salesforce app to steal data, extort companies

Cyber companies hope to untangle weird hacker codenames

Cyber companies hope to untangle weird hacker codenames

Woolworths' CSO is Optus-bound

Woolworths' CSO is Optus-bound

Log In

  |  Forgot your password?