Free Newsletter
Register for our Free Newsletters
Access Control
Deutsche Zone (German Zone)
Education, Training and Professional Services
Government Programmes
Guarding, Equipment and Enforcement
Industrial Computing Security
IT Security
Physical Security
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec

Baby kidnap spam infects PCs with Trojan horse

Sophos : 27 August, 2008  (Technical Article)
Hackers exploit child safety campaigns by claiming baby kidnap attempt in order to gain access to the victim's computers
IT security and control firm Sophos is warning computer users of a widespread spam campaign which pretends that the recipient's baby has been kidnapped in a bid to infect users' computers with malware.

The campaign tries to trick innocent computer users into opening a file claiming to be photographs of the infant, but instead it contains a malicious Trojan horse - known as Troj/Resex-Fam - that downloads further malware from the internet to compromise PCs and steal information.

The malicious emails carry the subject line 'We have hijacked your baby' and claim that a USD 50,000 reward must be paid for the child's safe return.

'Receiving or reading these widespread emails themselves does not mean you are infected, but if users open the attachment they will be infecting their Windows computer, and giving hackers an open door to take control and steal information," said Graham Cluley, senior technology consultant for Sophos. "Once a PC is commandeered, criminals can spy, steal or launch attacks against other parts of the net.'

Sophos believes that the disguise proves hackers will stoop to any depths in order to reap financial rewards.

'There's no other way of putting it - this attack is sick. Hackers have no qualms about exploiting a family's natural instinct to defend its most vulnerable members. Hopefully people will pause before opening the attachment, but the reflex action of some may be to click first and think later,' continued Cluley. 'Everyone should ensure they have defences in place to properly protect against the very latest malware attacks.'

Sophos recommends companies automatically update their corporate virus protection, and run a consolidated solution at the email gateway to defend against viruses and spam.
Bookmark and Share
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
   © 2012
Netgains Logo