The Tech Herald

Infectious spam hijacks users who view the message

by Steve Ragan - Jan 31 2012, 11:30

Infectious spam hijacks users who view the message. [IMG: J.Anderson]

On Friday, eleven, an email security firm based in Germany, issued a warning to users to be on the lookout for spam that is taking advantage email client settings that allow messages to render HTML. The warning comes after researchers from the company noticed a rash of messages leveraging embedded JavaScript in order to download malicious code to the system.

While this is hardly a new trick or attack vector, it seems as if criminals are returning to their roots.  The spammed email arrives as a banking security alert, with a spoofed return address making the message appear to be from the FDIC. Once accessed, if the message is rendered in an email viewer that allows HTML to be displayed, embedded JavaScript code will attempt to download malware to the system after scanning it various vulnerabilities. At the time the attack starts, the victim only sees a simple “Loading...Please wait...” message.

According to eleven, this latest resurgence of an old attack method is similar to so-called drive by downloads, where users are infected by opening a malicious Website in the browser. Here, the “drive-by-spam” eliminates the need to place harmful attachments or links in the e-mail, which allowed the attackers the bonus of infecting cautious users, who would normally never open an unknown attachment or link.

Most layered security systems that include spam filtering will flag these malicious notices. Here at The Tech Herald, in addition to the protection offered by eleven, we can confirm that Norton, Kaspersky, BitDefender, and Cloudmark (part of VIPRE Internet Security 2012) are blocking them as well. We were unable to confirm other security suites at the time of writing.

In addition to layered protections, the old advice of reading email in plain text is also helpful. For those who may need tips on how to do this, see below:

 

Outlook 2010: File -> Options -> Trust Center -> Trust Center Settings -> Read all standard / signed mail in plain text

 

Outlook 2007: Tools -> Trust Center -> E-mail Security -> Read all standard / signed mail in plain text

 

Outlook 2003: Tools -> Options -> Preferences -> E-mail Options -> Message handling -> read all mail in plain text.

 

Thunderbird: View -> Message Body As -> Plain Text

 

Around the Web

Comment on this Story

comments powered by Disqus

From Autosaur.com

Monaco Grand Prix Circuit Map

Infiniti Red-Bull have released a Monaco Grand Prix circuit map showing a string of G-Force and speedo readings recorded in their cars on a normal lap. The team also described the most complicated turns on the track: Turn 1, Sainte Devote, sees drivers hit the barrier if they come into corner just 1km/h too fast [...]

The post Monaco Grand Prix Circuit Map appeared first on Autosaur.

Daniel Day-Lewis and Yasmin Le Bon at Mille Miglia rally in Italy

Jaguar have released a cool little film about their experience at this year’s Mille Miglia car rally in Italy — featuring stars including triple Oscar-winner Daniel Day-Lewis and model Yasmin Le Bon. The video has short interviews with several of the famous participants about taking part in the 1,000-mile event, which celebrates the original Mille [...]

The post Daniel Day-Lewis and Yasmin Le Bon at Mille Miglia rally in Italy appeared first on Autosaur.

Man wins Batman version of Nissan Juke

A BATMAN fan has won a special version of the Nissan Juke inspired by the films — and which has a string of features more normally seen on the Batmobile. Adam Williams was presented with the matt black vehicle after a real Batmobile (well, as real as they get) was driven through the streets of the [...]

The post Man wins Batman version of Nissan Juke appeared first on Autosaur.