Peaches Posted December 4, 2008 Report Share Posted December 4, 2008 Dec3 2008Bogus McDonald’s, Coca-Cola Promos Used as Worm Carriersby Maydalene Salvador (Anti-spam Research Engineer) Seems like McDonald’s and Coca-Cola are cybercriminals’ promoters of choice this season–two spoofed emails that claim to be from both of the highly popular brands were recently found by the Trend Micro Content Security Team.Each messages trumpets a Christmas promotion, and instructs the recipient to open the attached coupon contained in a .ZIP file. Trend Micro already blocks such messages, and detects both attached files through the Smart Protection Network as WORM_MYDOOM.CG. This worm gathers email addresses from the affected system’s Windows Address Book and then sends copies of itself via email, using its own SMTP engine. It also drops copies of itself in folders shared in peer-to-peer networks, as well as in all physical removable drives. Furthermore, it drops a file detected as BKDR_SDBOT.QB.Read & see screenshots: http://blog.trendmicro.com/ Quote Link to post Share on other sites
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.