Fake CNN News email alerts are circulating extensively

Common Tasks

Community

Email Notifications

Personal Links

Security Protection - Harry Waldron (CS)

Security Best Practices, Breaking News, & Updates

Email As multiple copies have been received, these fake CNN email alerts are circulating extensively. These realistic HTML based email messages appear almost legitimate, although some of the headlines have been sensationalized.

As an additional social engineering approach, the "get the latest flash" to view the videos may be something users have encountered in the past, with legitimate Flash upgrades. These realistic messages should be avoided and when in doubt go directly to the mail CNN website, rather than trusting the legitimacy of an email message.

Fake CNN News email alerts are circulating extensively
http://blog.trendmicro.com/new-trojan-bait-cnn-videos/
http://isc.sans.org/diary.html?storyid=4841
http://sunbeltblog.blogspot.com/2008/08/fake-cnn-headlines.html

QUOTE: This recent spam run looks fairly legit. It even comes with a tag line ”More videos, More news, More people saying: I just saw it in CNN.com” in the footer area -- perhaps to make it appear that the email is pushing a genuine CNN campaign. Both varieties though, appear to point to the download of the same file, get_flash_update.exe, in order to view the videos referred to in the spammed email.

Posted: Aug 08 2008, 05:42 PM by Harry Waldron | with 1 comment(s)

Comments

Racetimer said:

I just received this e-mail and thought it was iffy - BUT - it said B of A just announced bankruptcy and I clicked on the link to story.

It came back with "you must upload the newest version of ?? player" to see video"

I KNEW there was a problem at that point but it would not allow me to exit - kept coming back with the same window.

Bottom line, in trying to get out of the loop I hit the "allow" button by mistake.

I immediately did a cntrol/alt/delete and closed browser but - -

Did I get a virus/trojan/etc. in the short time before I closed the browser?

How do I know if I got infected?

I was/am running McAfee - did it stop any possible download?

I am currently running a complete McAfee scan, anything else I should do?

Thanks for the help.

# August 9, 2008 10:02 PM

Questions? Contact Susan at Susan-at-msmvps.com. Each post's copyright held by the original author. All rights reserved. Blog site is an independent site not sponsored by Microsoft.
Our servers would like to thank www.ownwebnow.com and www.exchangedefender.com. We wouldn't be here without the generosity of Vlad Mazek and his companies.

Powered by Community Server (Commercial Edition), by Telligent Systems

Theme based on the Paperclip Blog Theme included in Community Server.
Enhanced to a Site-Wide Theme by Interscape Technologies.

Common Tasks

Recent Posts

Community

Email Notifications

Personal Links

Archives

Security Protection - Harry Waldron (CS)