Security labs have discovered geo-targeted malicious spam.
Malware authors have incorporated geo-locating technology to enable more convincing social engineering scams. A new variant of the Waledac worm uses an email message claiming a dirty bomb explosion in order to tempt the gullible into visiting a maliciously constructed website posing as the homepage of news agency Reuters. This website uses a GEO-IP lookup to customize the story so as to appear that the explosion appeared in a city or location near the surfer viewing it. Links to Wikipedia and Google are also included to convince the recipient of the veracity of the report.
Punters are encouraged to view a video supposedly related to the shocking news of a nearby radioactive bomb explosion. When users click on the video they are prompted to download the latest version of Flash Player. But the software on offer turns out to be nothing to do with Adobe, instead coming loaded with the latest variant of the Waledac worm.
Sources: The Register, InfoSecurity.
blogmaster 
Posted in 
Tags: 
