F-Secure gone Phishing

F-secure informs us how virus writers are quick to use natural disasters

Helsinki, Finland - January 19, 2007, A significant network attack was launched globally in the early hours of Thursday morning (GMT) using news of a European storm as the hook to lure the unsuspecting. The message, which was created and launched literally as the storm raged, is exploiting a timely widescale media event as the key mechanism for delivering its payload.


The Trojan was distributed in messages with subject line of "230 dead as storm batters Europe". The payload in this case was the Small.DAM Trojan that was downloaded into all vulnerable machines upon opening of the spam mail’s attachment such as "Read More.exe". Once inside the machine, the Trojan creates a backdoor that can be exploited later by the malware authors behind the assault.

As has been seen with other attacks, the likely intention is to create a new raft of zombie computers to steal information and to further propagate large-scale spam and phishing runs.

www.pressmen.co.uk