News
Sophos: Beware of Malware-Bearing Obama E-mail
Malware campaign aims to exploit election results
By Joan Goodchild, Senior Editor
November 05, 2008 — CSO —
Security firm Sophos on Wednesday issued a warning about a major malware campaign circulating that exploits the results of Tuesday's U.S. presidential election.
According to Sophos, an e-mail touting the win of Democratic candidate Barack Obama directs users to a doctored election results page. The page prompts the user to download what appears to be Adobe flash software to view an "amazing speech."
"In reality, it infects the user's computer with a Trojan horse that can be remotely controlled by hackers, leaving it open for other malware/spyware," Sophos officials said in a statement.
Sophos has identified the piece of malware in the attack as Mal/Behav-027. That piece of malware has represented as much as 60 percent of all the malicious spam seen in Sophos labs in the last 24 hours, according to a Sophos spokesperson.
This isn't the first time cybercriminals have attempted to use Obama in a spam attack. Earlier this year, a malicious e-mail claiming to contain a sex video of Obama was circulated.
Other stories by Joan Goodchild
Gartner Video: Best Practices for Web Application Security and Compliance
Faced with the growing threat of hacker attacks, how do you protect your data and your corporate reputation while increasing revenue?
Email Continuity: Don't Know What You've Got Till it's Gone
Today, more email is being sent and attachment sizes are becoming larger. This means that security, archiving, and continuity systems must be able to scale easily. Learn to manage your email better…
- Ironclad Web Conferencing: Who's listening to your online meeting?
- Jump Start Application Security Initiatives with SaaS
- Gartner Video: Best Practices for Web Application Security and Compliance
- Data Breaches: The Cost of Being Unprepared- Thought Leadership Panel Perspectives
- 2009 Data Breach Investigations Report
- Advancing Information Protection with a Built-In Approach
- The Cost-Based Business Case for Data Loss Prevention
- Strategies to Mitigate Information Risk: Data Loss Prevention and Enterprise Rights Management
- Get Sophisticated About Your Web Application Security
- Losing Ground: 2009 TMT Global Security Survey
- Unlock the Power of Device ID to Combat Online Fraud and Abuse
- Every Man's Guide to Combat Threats Within Your Organization
Get instant notifications when whitepapers, webcasts and case studies are added
to our library. Sign up for a Resource Alert now!
CSO Corporate Partners
Digital ID World
-
September 14 - 16, 2009Rio Hotel and CasinoRegister Now »
Las Vegas, Nevada
(ISC)2 members can earn up to 24 CPE Credits!
Reference priority code ONLINE and attend the full conference for the reduced rate of $995!
