Common Tasks

Recent Posts

Community

Email Notifications

Personal Links

Archives

Security Protection - Harry Waldron (CS)

Security Best Practices, Breaking News, & Updates

New Halloween e-card security threats

Sleep Websense has warned of a new HTML based e-card in the Spanish language.  It is designed to load a Trojan horse that can steal banking account credentials from the infected PC.  More threats could potentially emerge, so please be careful out there.

New Halloween e-card threats
http://www.websense.com/securitylabs/alerts/alert.php?AlertID=813

Sample e-card from Websense
http://www.websense.com/securitylabs/images/alerts/halloween2007.png

QUOTE: Websense® Security Labs™ has discovered a new Trojan Horse information stealer that is being emailed out as a Halloween Greeting Card in Mexico.  To date we have seen four unique sites being spammed out all with the same binary file. They were in Korea, Brazil, and Russia, and were all up and running at the time of this alert. The file is called "hallowenDay.exe". It is also poorly detected by anti-virus signatures.

Assuming users access the site and select to run the file a Trojan Horse is downloaded onto their machine which is designed to steal banking information from users, the file appears to also be packed with a unique custom packer. We expect to see additional email lures and malicious websites on our radar with Halloween night quickly approaching. The email is written in HTML and has a variety of subject lines.

Posted: Oct 30 2007, 03:27 PM by Harry Waldron | with 10 comment(s)

Comments

My Ghillie » New Halloween e-card security threats said:

Pingback from  My Ghillie » New Halloween e-card security threats

# October 30, 2007 9:56 AM

Halloween » New Halloween e-card security threats said:

Pingback from  Halloween » New Halloween e-card security threats

# October 30, 2007 10:29 AM

New Halloween e-card security threats said:

Pingback from  New Halloween e-card security threats

# October 30, 2007 10:54 AM

greeting card » New Halloween e-card security threats said:

Pingback from  greeting card » New Halloween e-card security threats

# October 30, 2007 11:56 AM

Halloween News Aggregator » New Halloween e-card security threats said:

Pingback from  Halloween News Aggregator » New Halloween e-card security threats

# October 30, 2007 1:31 PM

97paths » Blog Archiv » New Halloween e-card security threats said:

Pingback from  97paths  » Blog Archiv   » New Halloween e-card security threats

# October 30, 2007 6:28 PM

quote » New Halloween e-card security threats said:

Pingback from  quote » New Halloween e-card security threats

# October 31, 2007 9:49 PM

anti virus » New Halloween e-card security threats said:

Pingback from  anti virus » New Halloween e-card security threats

# October 31, 2007 11:06 PM

card » Blog Archive » New Halloween e-card security threats said:

Pingback from  card  » Blog Archive   » New Halloween e-card security threats

# November 20, 2007 2:51 PM

http://msmvps.com/blogs/harrywaldron/archive/2007/10/30/new-halloween-e-card-security-threats.aspx said:

Pingback from  msmvps.com/.../new-halloween-e-card-security-threats.aspx

# March 21, 2008 1:26 AM