Latest SPAMs, SCAMs and Hoaxes

Alerts, tips and advice about latest SPAM and hoax messages. A database of latest SPAMs, SCAMs, Hoaxes, Junk e-mails, PHISHING attacks, phishing scams, bogus virus or worm warnings, internet scams, urban legends in circulation. Let’s make the web more safer, pleasant and productive environment.





Berlin based email security company Eleven has issued a warning about a new and particularly dangerous e-mail-borne method to infect PCs with viruses and Trojans. This driveby spam automatically downloads malware when the e-mail is opened in the e-mail client. Previous malware e-mails required the user to click on a link or open an attachment for the PC to be infected. The new generation of e-mail-borne malware consists of HTML e-mails which contain a JavaScript which automatically downloads malware when the e-mail is opened. This is similar to so-called driveby downloads which infect a PC by opening an infected Website in the browser. Driveby spam eliminates the detour via attachments or links in the e-mail and also affects cautious users which would never open an unknown attachment or link.

According to Eleven, this new threat has been spotted in emails that pretend to come from the Federal Deposit Insurance Corporation, the U.S. government's insurance plan for consumer bank deposits. The subject heading is "Banking security update" but it's likely that variants on that theme are in the works.

Incidentally, the U.S. security giant Symantec spotted a very similar fake FDIC email message with the subject line "Update for your banking account" It carried the malicious HTML file as an attachment.

For more info »»

1. Driveby Spam Infects PCs When E-Mail Is Opened

2. 'Drive-by' email infects readers immediately

3. Email with Malicious HTML Attachments


0 Responses to “[Virus] 'Drive-by' email with the subject 'Banking security update' infects immediately without opening any attachments”

Post a Comment



Links to this post

Create a Link

Bookmark and Share




XML



Powered by Blogger




Latest SPAMs, SCAMs and Hoaxes | 2009-2017


Learn How to Identify a SPAM or Hoax message | More SPAM/Hoax Information at: HoaxBusters.org

 

Except where otherwise noted, this work is licensed under a Creative Commons Attribution-ShareAlike 2.5 License.