Security experts have intercepted a mass mailing purporting to come from McAfee, but which actually spreads a trojan horse.
Kaspersky Labs described the mass mailing as "unusual" because the messages attempt to spoof the email address mcafee@europe.com.
The Lafool.v infection is hidden in a Word document called 'McAfee.Inc. Reports.doc'. The file is 80,635 bytes in size, and allegedly contains a report about the propagation of malicious programs on the Internet.
However, the document actually contains a macro written in Visual Basic for Applications.
Lafool.v extracts a new modification of LdPinch, a well-known Trojan password stealing program, from itself and launches it for execution, Kaspersky Labs warned.
LdPinch steals passwords to a number of services and applications, including AOL Instant Messenger and ICQ, and other confidential user data.
Kaspersky Anti-Virus detects the new variant of this program as trojan-PSW.Win32.LdPinch.bbg.
Malicious trojan poses as McAfee alert
By
Robert Jaques
on Nov 7, 2006 11:38AM
Kaspersky warns of danger from Lafool.v.
Got a news tip for our journalists? Share it with us anonymously here.
Partner Content
Promoted Content
New report reveals opportunities to address weak security in APAC organisations
Partner Content
Taking the fast track to B2B digital fitness
Partner Content
Unblocking your organisation's data flows
Partner Content
Solving the post-COVID digital access control headache
Sponsored Whitepapers
Future of work: Support your distributed HR workforce with digital document processes
Develop a resiliency strategy that integrates risk analysis & continuity management
.jpg&w=100&c=1&s=0)
IBM Maximo: Manage any asset, anytime, any place with mobile EAM
.jpg&w=100&c=1&s=0)
Optimise your operations with APM and AI-Powered insights
Forrester Study: Understand the total economic impact of using IBM Cloud Pak™ for Data
