On CHOW: Sexy vampire party
BNET Business Network:
BNET
TechRepublic
ZDNet

November 5th, 2008

Obama-related spammed trojan propagating worldwide

Posted by Adam O'Donnell @ 11:30 am

Categories: Complex Attacks, Governments, Malware, Spam and Phishing, United States of America, Viruses and Worms

Tags: Cloudmark, President, Trojan Horse, Cyberthreats, Spam, Spyware, Adware & Malware, Security, Viruses And Worms, Spam And Phishing, Adam O'Donnell

Several security companies including F-Secure, Sunbelt, and my employer Cloudmark (disclosure) are reporting a large volume of Obama-related spam that links to malware. This is just the latest twist on the long-running theme of social engineering end users into installing web-based malware.

The lures consist of e-mails with subject lines like:

Obama win preferred in world poll
Can Obama win popular vote but lose election?
New president’s
Will American Voters Elect a Black President
Election Night Results

The message body does not vary much:

Barack Obama Elected 44th President of United States

Barack Obama, unknown to most Americans just four years ago, will become the 44th president and the first African-American president of the United States.
Watch His amazing speech at November 5!

Proceed to the election results news page>>

2008 American Government Official Website
This site delivers information about current U.S. Foreign policy and about American life and culture.

Jamie Tomasello, manager of the security operations center at my employer Cloudmark (disclosure) has estimated the prevalence of this particular spam strain to be on the order of tens of millions. Given the lure’s low rate of content mutation, anyone with a decent spam filter should be able to catch the spam.

As I have said before, the malware-lure style spam will likely never go away. The snap desire innate in all of us to look at alarming news will always provide an opportunity for attackers to exploit desktop systems. Our only chance at preventing this style of attack in the future is solid anti-spam and a massive improvement in the state of anti-virus technology as it exists today.

Adam O'DonnellAdam J. O'Donnell, Ph.D. is an R&D engineer who has focused on computer security since 2000. He currently is the Director of Emerging Technologies at Cloudmark, a messaging security company located in San Francisco. See his full profile and disclosure of his industry affiliations.

Email Adam O'Donnell

Subscribe to Zero Day via Email alerts or RSS.

  • Talkback
  • Most Recent of 12 Talkback(s)
RE: Obama-related spammed trojan propagating worldwide
kind of like his politics (Read the rest)
Posted by: pocketchalker@... Posted on: 12/31/08 You are currently: a Guest | | Terms of Use
Funny this should come up...  bobjones68@... | 11/05/08
deleted  Monosdeja | 11/05/08
RE: delete  Linux uSer | 11/07/08
?  Monosdeja | 11/05/08
RE: Obama-related spammed trojan propagating worldwide  Monosdeja | 11/05/08
Nothing surprising there...  eMJayy | 11/05/08
I'll open it...  epcraig | 11/06/08
Give it time  ZenWarp | 11/07/08
RE: Obama-related spammed trojan propagating worldwide  JonB2008 | 11/06/08
Pump and Dump is different  Lizzie_B | 11/06/08
RE: Obama-related spammed trojan propagating worldwide  pocketchalker@... | 12/31/08
RE: Obama-related spammed trojan propagating worldwide  pocketchalker@... | 12/31/08

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

Essential Topics Click Here

advertisement

Recent Entries

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
advertisement

Archives

Favorite Links

ZDNet Blogs

White Papers, Webcasts, and Downloads

SmartPlanet

Click Here