Malicious Trojan poses as McAfee alert

By on

Security experts have intercepted a mass mailing purporting to come from McAfee, but which actually spreads a Trojan horse.

Kaspersky Labs described the mass mailing as "unusual" because the messages attempt to spoof the email address mcafee@europe.com.

The Lafool.v infection is hidden in a Word document called 'McAfee Inc. Reports.doc'. The file is 80,635 bytes in size, and allegedly contains a report about the propagation of malicious programs on the internet.

However, the document actually contains a macro written in Visual Basic for Applications.

Lafool.v extracts a new modification of LdPinch, a well-known Trojan password stealing program, from itself and launches it for execution, Kaspersky Labs warned.

LdPinch steals passwords to a number of services and applications, including AOL Instant Messenger and ICQ, and other confidential user data.

Kaspersky Anti-Virus detects the new variant of this program as Trojan-PSW.Win32.LdPinch.bbg.
Copyright ©v3.co.uk
Tags:
alert as malicious mcafee poses security trojan

Most Read Articles

Number of homes in NBN limbo balloons

Number of homes in NBN limbo balloons
Human Services casts doubt on Watson

Human Services casts doubt on Watson
MyGov gets a makeover

MyGov gets a makeover
ANZ Bank looks to DIY tech under Maile Carnegie

ANZ Bank looks to DIY tech under Maile Carnegie
You must be a registered member of iTnews to post a comment.
| Register

Whitepapers from our sponsors

Growing companies have a growing interest in technology
Growing companies have a growing interest in technology
RSA NetWitness® Endpoint. Respond 3X Faster to Threats
RSA NetWitness® Endpoint. Respond 3X Faster to Threats
Building platforms for future health and education
Building platforms for future health and education
Breach Level Index Report
Breach Level Index Report
Data Security vs Human Behaviour
Data Security vs Human Behaviour

Events

Log In

Username:
Password:
|  Forgot your password?