About security impotence before Storm worm
After a 13-hour "break", Storm's poison worm continued to violently bombard the world's Internet users. This time, its "victim bait" is the American Labor Day and hot women like Beyonce and Rihanna.
Over the past 3 months, Storm has been tirelessly bombarding the Internet. The number of spams released by this worm is unspeakably numerous and is put into giant campaigns.
According to Vinoo Thomas, an expert with security firm McAfee, during the latest distribution campaign, Storm impersonated an e-card to congratulate the US Labor Day.
" Deep senders have used tags in HTML to disguise links, so careless users will not notice ".
If you click on this hidden link, the user will be directed to a Happy Labor Day website. Here, a "destructive cocktail" will be automatically downloaded to the victim's computer.
" They not only exploit vulnerabilities within Microsoft software but also target QuickTime and WinZip buffer overflows ," Thomas said.
Because third-party applications like WinZip are rarely updated with patches, the risk of hackers successfully exploiting the vulnerability is higher. " Users are too lazy and too much work to think about downloading the update and then patching it ."
Just that. Storm's author has shown them to be masters of malware. In order to increase the effectiveness of the attack, they not only took advantage of the US Labor Day but also distributed a series of fake emails, inside the link to watch music videos of top female singers today. like Beyonce Knowles, Kelly Clarkson and Rihanna.
Error in humans
According to Sophos, the title of these emails is usually " Very hot new video ", " Video can't be better " . Besides the beautiful women, Storm also takes advantage of the names of many rice artists. such as The Eagles, Foo Fighter and R. Kelly bands.
If you click on the video link, users will be redirected to a web page containing malicious script and Trojan code, ready to turn their computer into Zombie.
" Obviously hackers are constantly updating the current situation to deceive innocent users. They know very well what is being taken care of online, so although this technique is nothing new in technology, but users are still cheated, "said Graham Cluley, an analyst at Sophos.
The "fox" level even allows them to take a break when humanity is on the holiday and spend less time on the network.
" Beginning at 9:45 pm on Friday night last week, Storm's botnet network was suddenly quiet. They stopped distributing emails, no e-cards, no fake warnings . Nothing. However, only 13 hours. after that, the reel started again . "
Trong Cam
You should read it
- Storm Worm ruled the world of blogs
- What if hurricanes disappeared from Earth?
- Storm became a 'record' of spam distribution
- Practical Reasons To Use A Labor Management Software
- Nugache threatened the throne of Storm
- How to track storms directly on the browser, phone
- Watch an epic video of hurricanes filmed 30,000 miles over 3 months
- Hurricane No. 3 is approaching level 14 in Vietnam
May be interested
- Storm was 'stronger' than the BlueGene supercomputer dozens of timesa researcher claims that the power of the storm worm botnet has now overcome the power of ibm's most powerful blue gene supercomputer.
- P2P worms attack Skype usersthe most popular voip service provider for skype users is being attacked by a new worm that spreads through the p2p chat feature of this internet phone software.
- The internal virus spreads the fastest everfrom the end of last week to the present, netizens using chat tools yahoo (im) fluttering before the arrival of a virus with the speed of infection is rated as the fastest ever and proved very good. dengoures.
- Virus destroys data that is spreading in Vietnamon the afternoon of october 10, according to the network security center bkis, the virus destroyed w32.chir.b@mm data, which infested more than 3,000 computers since september. in recent days, this virus has caused damage to many businesses
- Storm Deep uses YouTube to spreadyoutube's 'invite friends to watch videos' feature recently has been used by spammers to spread spam with dangerous 'worm' implants.
- Skype continues to be 'raided'within a month, skype was twice attacked by hackers using trojans, and the way they used it was a fake software called skype defender.