Tuesday, February 16, 2010

Shot through the heart - Cupid's arrows are dangerous!

The first spam wave of infected Valentine's greetings has already hit

This year G Data is once again counting on another boom in Valentine spam and malicious emails. The experts at the Bochum security software producer have already identified the first waves of infected spam. The range of email already extends from bogus greeting card mail through to urgent Valentine's Day shopping spam. And the advice from the G DATA experts: put any Valentine spam straight in the trash can without opening it.

Bogus greeting cards are sent throughout the year, however on high days and holidays they always receive extra attention from both the scammers and the scammed. There is a strong temptation to see just who has sent these supposed greetings from "a friend", but it is at precisely this point that the trap snaps shut.

Scenario 1: The greeting card is hidden behind an apparent link
One click on a link is all it takes for the scamster to secretly infect a computer with malicious code. The consequences range from possible data theft through to loss of control of your own PC.

Scenario 2: The greeting card is received as an apparent attachment
The receiver must open the file, mostly an .exe or zip file, to see the eCard. As soon as the file executes, malware attacks the computer and there is a high risk that the attacker will be able to take control of the computer, to spy on data and/or connect it to a botnet so that it can then be used in further criminal machinations.

Scenario 3: Valentine's Day Shopping Spam
"St. Valentine`s Day Sale 72% Off“ is just one of the current lures. However clicking on the link will at best take the user to a dubious online shop and, more than likely, also infect the computer courtesy of a drive-by download.

The G Data expert tip
Recipients should always delete emails from unknown senders, should not open attached files and under no circumstances should they click on links in emails from unknown senders. To maintain optimum security, the operating system and virus protection software must always be updated to the latest version. The use of security packages with http-scanners, which scan all web content for malicious code before it reaches the browser should also be obligatory.

Source: http://www.gdatasoftware.co.uk/about-g-data/press-centre/news/news-details/article/1525-shot-through-the-heart-cupid.html

No comments:

Post a Comment