Spammers Use Fake Tibetan Statement on the Olympics
As early as March 2012, we have spotted a number of Tibetan-themed campaigns, and we’ve documented some of them through this blog. So far, the attacks are pretty consistent: they usually arrive as emails with pro-Tibetan sentiments as subjects, and have malicious file attachments.
Very recently, however, we found one Tibetan-themed campaign that also touches a very relevant current event: the 2012 summer Olympics in London.
As seen above, the email message is consistent with the typical techniques observed in other Tibetan-themed spam campaigns. In this case, however, the attached compressed file includes a decoy .DOC file with the file name China’s Olympic Legacy.docx. Along with it are two malicious executables, poster.scr and Tibet and Olympics.scr, which Trend Micro both detect as TROJ_DROPPER.WSD. These Trojans drop TROJ_RUGENT.A, display the images shown below, and then delete themselves.
TROJ_RUGENT.A, once executed, connects to certain URLs to send and receive information. Its routines may include the collecting of information about the affected system and its user.
Trend Micro users are now protected from this threat through the Smart Protection Network, which blocks the spam messages and detects the malicious files.
This is not the first Olympic-related threat we’ve seen, and it is highly unlikely that this will be the last. To check on these kinds of threats, you can visit Race to Security, the Trend Micro security guide to major sporting events such as the Olympics:
Coming Soon: The TrendLabs Security Intelligence Blog is the new Malware Blog
Post from: TrendLabs | Malware Blog – by Trend Micro
Spammers Use Fake Tibetan Statement on the Olympics
Spotlight
Cloud Computing
- Security in backups means more than just encryption
- Employees must buy into the company policy for better cloud security
- Desktop virtualization can enhance security performance
- Cybersecurity cooperation becoming military necessity
Virtualization
- Virtualization-specific challenges could threaten data security
- Evolving threats put security skills in high demand
- Virtualization security requires education, access control management
- Tips for launching effective virtual security tools
Internet Safety
- Virtualization-specific challenges could threaten data security
- Evolving threats put security skills in high demand
- Virtualization security requires education, access control management
- Tips for launching effective virtual security tools
Vulnerabilities & Exploits
CTO Insights
First Line of Defense
Newsletter
Stay up to date with the latest news and information on online threats.
Recent News
- FBI trying to train financial execs on cyber threats
- Wall Street has data security concerns over Bloomberg reporting
- Security in backups means more than just encryption
- Employees must buy into the company policy for better cloud security
Tag Cloud
cloud cloud computing cloud computing security Cloud Security Compliance & Regulations Consumerization Current News cybercrime Data Privacy data security Encryption Government Policy Internet Protection Internet Safety Internet Safety - DO NOT USE Internet Security Malware Mobile Security Mobility Policy Policy - DO NOT USE Privacy Privacy & Policy Private Cloud Public Cloud Reports Research Spotlight threat intelligence threat research Trend Labs Underground Economy virtualization Vulnerabilities Vulnerabilities - DO NOT USE web security web threats
Comments
No comments yet
The comments are closed.