Storm Worm Entices With New Year's Spam - The Channel Wire - IT Channel News And Views by CRN and VARBusiness

NEW ON CHANNELWEB

Top 25 Executives

State of Tech: Storage

Apply Now For Partner Program Guide '08

Tech Innovator Awards

Real-Time Pricing and Availability

Fast Growth Awards

Annual Report Cards

Promo Finder

FEATURED VIDEO

Sponsored By:

SLIDE SHOWS

5 Books The Top 25 Execs 2008 Are Reading

ChannelWeb's Top 25 Execs of 2008 know that reading is fundamental. Here are their picks for books to feed your brain.

The Top 25 Executives Of 2008

There were plenty of high-powered movers and shakers that made a big impact on the channel in 2008. Here's a look at who made our list of the 25 most influential.

25 Holiday Gifts A Techie Will Love

It's time again to agonize over what to get the techie in your life. With the holidays closing in fast, here are 25 gift ideas sure to wow any techie.

>>More Slide Shows

INSIDE CHANNELWEB

State Of Security

CRN Fast Growth 100

Marketing Support Services

Emerging Vendors

VARBusiness 500

Partner Programs Guide

Financial Center

Salary Calculator

Vendor Content Community

Sales Accelerator

Solution Provider Locator

BLOGS

The Channel Wire

December 27, 2007

Storm Worm Entices With New Year's Spam

The Storm Worm loves the holidays. Security researchers have found that the Storm virus is ringing in the New Year with a fresh wave of attacks. This time, the notorious botnet is recruiting new members with a greeting spam. Subject lines include: "A fresh New Year" "As the New Year..." "As you embrace another New Year" "Blasting New Year" "Happy 2008" "It's the new year" "Joyous new year" "New Hope and New Beginnings" "New Year Ecard" "New Year Postcard" "Opportunities for the New Year" "Happy New Year to You" "Happy New Year to (email address)" "Lots of greetings on the New Year" "New Year Wishes for You."

The e-mails then attempt to direct users to a malicious Web site called uhavepostcard.com. A blog post by anti-virus firm F-secure warns that while the site remains free of exploits (for now), the spam will likely be a precurser to a New Year's Eve-themed Storm attack.

This wave of New Year's spam follows shortly on the heels of a widely distributed Christmas attack, which was delivered December 24, featuring a Santa Clause-themed striptease to entice users to visit merrychristmasdude.com. Subject lines for this holiday spam included: "I love this Carol" "Santa said, HO, HO, HO" "Christmas Email" "The Perfect Christmas" "Find Some Christmas Tail" "Time for a little Christmas Cheer."

A SANS Institute blog post warned that users will see several spam blogs with this domain in the body, directing traffic to siski.cn, when searching for the site on Google. Upon visiting the site, users will immediately be redirected to yet another malicious Web site that will attempt to install a fake video codec, which instead appears to be a malicious PC downloader.

Security researchers recommend that individuals make use of their spam filters to block the malicious domains for both incoming email and outbound web traffic. And, as always, security professionals advise against opening e-mails from an unknown or unsolicited sender.

Posted by Stefanie Hoffman at 7:26 PM

>>More on The Channel Wire

CHANNELWEB MARKETSPACE >> (Sponsored Links)

>>Buy a Link Now

Main >>

Contact

Email Us

Subscribe To This Feed