Boston Bombings Used as Malware Scam Bait

Status
Not open for further replies.

DrBeenGolfing

Level 1
Thread author
Verified
Mar 16, 2013
582
Just hours after the Boston Marathon bombings Monday (April 15), scammers were already using the tragedy to fuel their malware campaigns, according to a study by Romanian anti-virus firm Bitdefender.

The study found that the words "marathon," "Boston" and "explosion" found their way into the subject headers of one out of every five spam messages in the hours and days following the event.

The use of news events to spread malware is nothing new for scammers. Just last month, scammers used the news of the pope's installment as bait for email victims. Emails containing links to malware-laden sites were circulated with subject lines such as "New Pope Sued for Not Wearing Seatbelt in Popemobile."

But this week’s spam strikes a more somber note. With subject headers such as "Aftermath to Explosion at Boston Marathon" and "Boston Explosion Caught on Video," these emails aim to ensnare those looking for more information about the attacks.

According to Bitdefender's Hot for Security blog, the emails contain links to malicious websites using URLs ending with "news.html" and "boston.html."

[How to Avoid Boston-Bombing Online Scams]

When clicked, the links direct users to a seemingly innocuous YouTube page displaying videos of the bombings. But after a short delay, an executable file is activated and the malware installs itself on victims' computers.

Bitdefender identified the malware as Trojan.GenericKDZ.14575, a component of the infamous RedKit browser exploit pack — the same malware that recently infected visitors to the NBC website.

The Trojan is a password stealer that can grab users’ account passwords directly from their browsers. The malware also monitors network traffic of infected computers and may be used to steal Bitcoin wallets, send emails and download other malware.

As TechNewsDaily reported in the hours following the Boston bombings, Internet users need to remain alert in the wake of major news events.

Be wary of unsolicited emails, even those you receive from friends. If you want to donate to victims, do so only through charity organizations you know and trust.

Last but not least, make sure your anti-virus software warns your Web browser about malicious links.

This story was provided by TechNewsDaily, a sister site to LiveScience. Follow us @TechNewsDaily, on Facebook or on Google+. Originally published on TechNewsDaily.com.

http://www.livescience.com/28819-boston-bombings-scam-bait.html
 

Littlebits

Retired Staff
May 3, 2011
3,893
It seems like scammers try to take advantage of every tragic event possible. Very sad that people like that in the world exists.

Thanks.:D
 

Zurchiboy

New Member
Verified
Apr 10, 2013
98
It is sad when people are meltally ill and think that setting off a bonb in a marathon is a good Idea. It is also sad when people use this to scam people.
 

Venustus

Level 59
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Dec 30, 2012
4,809
Adding insult to injury!!:mad:
Tragic indeed!

Edit:Link is broken!
 

jamescv7

Level 85
Verified
Honorary Member
Mar 15, 2011
13,070
From the world today, some users are really vigilant and few slight chance to infect.

Sincr legitimate news sites from internrt and television are enough to supply information.

Sometimes emails are ignores due to considered as junk except if important.

Events like Boston Explosion are traditional and isn't much impact for email viruses imfection caused the importance is the sympathy on unexpected situation.
 

Ink

Administrator
Verified
Jan 8, 2011
22,490
Same with the Fertilizer Plant Explosion

http://news.softpedia.com/news/Malware-Alert-Fertilizer-Plant-Explosion-Near-Waco-Texas-346570.shtml
 
Status
Not open for further replies.

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top