Storm Worm Entices With New Year's Spam
The e-mails then attempt to direct users to a malicious Web site called uhavepostcard.com. A blog post by anti-virus firm F-secure warns that while the site remains free of exploits (for now), the spam will likely be a precurser to a New Year's Eve-themed Storm attack.
This wave of New Year's spam follows shortly on the heels of a widely distributed Christmas attack, which was delivered December 24, featuring a Santa Clause-themed striptease to entice users to visit merrychristmasdude.com. Subject lines for this holiday spam included: "I love this Carol" "Santa said, HO, HO, HO" "Christmas Email" "The Perfect Christmas" "Find Some Christmas Tail" "Time for a little Christmas Cheer."
A SANS Institute blog post warned that users will see several spam blogs with this domain in the body, directing traffic to siski.cn, when searching for the site on Google. Upon visiting the site, users will immediately be redirected to yet another malicious Web site that will attempt to install a fake video codec, which instead appears to be a malicious PC downloader.
Security researchers recommend that individuals make use of their spam filters to block the malicious domains for both incoming email and outbound web traffic. And, as always, security professionals advise against opening e-mails from an unknown or unsolicited sender.