Login

Please login to Techworld.com

Forgot password?
Need your new account confirmation email resent?
Forgot email?

Not a member yet?

Register for a Techworld Account and enjoy unlimited access to our extensive white paper library and exclusive Enterprise multi-user software trials. Account members can also comment on articles and access best practices guides.

Security

Top How-Tos / Advice articles

Spammers pose as private detectives

Miss Scarlet in the kitchen with malware.

By Brad Reed, Network World (US) | Published: 11:54, 20 November 2007

It looks as if Veronica Mars and Magnum, PI are getting into the malware business.

Commtouch, an Israeli security firm that specialises in protecting email integrity, says that it has detected a new malware outbreak that is spread through emails claiming to be from private investigators.

According to Commtouch, the emails tell recipients that a private investigator has been recording the recipients' phone calls and that an audio file of one of the calls is attached to the message. When unwitting recipients download the "call" to their hard drives, their computers become infected with malware.

"Preying on people's guilty conscience with a virus is an ingenious trick of social engineering," says Rebecca Steinberg Herson, Commtouch's vice president of marketing. "The email messages are written generically enough to fit almost every possible transgression one might wish to hide, ensuring people will open the attachments."

Some common subject headings for the malware emails include "I'm monitoring you," "You're being watched" and "The tape of your conversation." Commtouch says that the malware is sent in the form of a password-protected, compressed file that appears to be an MP3 sound file.

While Herson says she doesn't know the particular nature of the malware, she suspects that it isn't meant to overtly damage most computers but rather to get information from them or turn them into zombie machines.

"Nobody's bothering to create malware to wreak havoc with the machines anymore," she says. "Instead, they're creating malware that is stealthy and can steal information like passwords through mining information on hard drives."

Herson also notes that the private detective malware emails employ tactics similar to what the early Storm worm malware emails used. Those particular emails purported to be news alerts that lured recipients into inadvertently downloading malware by enticing them with sensationalistic headlines such as "Chinese missile shoots down USA satellite" and "230 dead as storm batters Europe."

Send to a friend

PLEASE NOTE: Your name is used only to let the recipient know who sent the story, and in case of transmission error. Both your name and the recipient's name and address will not be used for any other purpose.