- Reaction score
- 0
- Points
- 210
Virus Exploits London Bombing Attack Elizabeth Millard, newsfactor.com
Tue Jul 12, 1:34 PM ET
A virus-infected e-mail message is spreading, luring users into clicking on a file supposedly containing amateur video footage of the three London Underground trains after they were recently bombed.
With the subject line of "TERROR HITS LONDON," the message has been crafted to look like a newsletter from CNN, thanks to a spoofed e-mail address.
Users downloading the file will be vulnerable to infection and to their systems being controlled by the virus writer. Although the attack is not widespread, security firms have cautioned users to be vigilant about the message.
Virus Vector
The body of the message tells users that the file shows footage shot in the London Underground immediately after the bombs were detonated there.
In an attempt to make the file seem legitimate, the message indicates that the attached file has been checked by Norton's antivirus program.
The malicious program can affect a wide variety of systems, from Windows 95 to Windows XP.
News Hook
Using news items as a way to lure e-mail recipients into opening attachments now has become a tried-and-true technique with virus writers.
In June, when the verdict in the Michael Jackson trial was imminent, spam e-mails infected with Trojans claimed to have proof that Jackson had attempted suicide. Jackson has been the bait in the past as well.
Because news items are frequently swapped between e-mail users, messages that claim to scoop the news services often prove tempting for recipients.
Better Prepared
Although security firms continue to press for more user education and better filters for virus-laden messages, there does seem to be one ray of hope.
"Users do actually seem to be getting better about recognizing these kind of messages," said Sophos security researcher Carole Theriault. "There has been progress there."
It is more effective for companies to block messages containing applications so that they do not reach users, she said. But it is heartening to security firms to see that users are finally heeding the numerous warnings delivered by I.T. departments and security researchers.
"User awareness is important, without a doubt," said Theriault. "Since, basically, the more we try to stop viruses, the more attackers create."
Tue Jul 12, 1:34 PM ET
A virus-infected e-mail message is spreading, luring users into clicking on a file supposedly containing amateur video footage of the three London Underground trains after they were recently bombed.
With the subject line of "TERROR HITS LONDON," the message has been crafted to look like a newsletter from CNN, thanks to a spoofed e-mail address.
Users downloading the file will be vulnerable to infection and to their systems being controlled by the virus writer. Although the attack is not widespread, security firms have cautioned users to be vigilant about the message.
Virus Vector
The body of the message tells users that the file shows footage shot in the London Underground immediately after the bombs were detonated there.
In an attempt to make the file seem legitimate, the message indicates that the attached file has been checked by Norton's antivirus program.
The malicious program can affect a wide variety of systems, from Windows 95 to Windows XP.
News Hook
Using news items as a way to lure e-mail recipients into opening attachments now has become a tried-and-true technique with virus writers.
In June, when the verdict in the Michael Jackson trial was imminent, spam e-mails infected with Trojans claimed to have proof that Jackson had attempted suicide. Jackson has been the bait in the past as well.
Because news items are frequently swapped between e-mail users, messages that claim to scoop the news services often prove tempting for recipients.
Better Prepared
Although security firms continue to press for more user education and better filters for virus-laden messages, there does seem to be one ray of hope.
"Users do actually seem to be getting better about recognizing these kind of messages," said Sophos security researcher Carole Theriault. "There has been progress there."
It is more effective for companies to block messages containing applications so that they do not reach users, she said. But it is heartening to security firms to see that users are finally heeding the numerous warnings delivered by I.T. departments and security researchers.
"User awareness is important, without a doubt," said Theriault. "Since, basically, the more we try to stop viruses, the more attackers create."
