CyberInsecure.com

Daily cyber threats and internet security news: network security, online safety and latest security alerts
April 10th, 2008

New Fake News Email Attack Circulating

US-CERT has seen reports of a new circulating email. This attack is in the form of an email message with the subject line “Evacuation process has been started due to radiation leaks at San Clemente Nucklear Power Station.” The message body states that the information is from a trusted news source and encourages users to follow a link to view a video. This link may direct users to a website hosting malicious code.

Email text might look something like:

CNN, San Clemente, CA – Major Problems have been occured at San Clemente Nucklear Power Station – 20-year old circuit breaker fails to close, creating a 4,000-volt arc and fire. Possible radiation leaks on 100miles area. Evacuation process has been started – View current videoclip

The links to infected websites might look like:

http://usa7.****41.us/news_report.php?portal=21bzkwcdyDedsgdjcnwOkhb

http://usa6.*******58.in/news_report.php?agentid=3D34zaAdRoCsKIDxckpOoeoOwhfftWezndOkhb

Users are encouraged to help mitigate the risk and install/update anti-virus software. Among other things, never follow unsolicited web links received in email messages, verify sender email, spelling errors, grammar errors, weird URLs that doesn’t point to a news source, accuracy since, in this case, California has nuclear power plants in San Luis Obispo and San Onofre, not San Clemente.

What makes it interesting is that spammers were clever enough to invent a news story which might make lots of people click on it reflexively without thinking.

Share this item with others:

More on CyberInsecure:
  • Fake Sex Scandal Spam Campaign Involving Barack Obama Spreads Malware
  • Fake US Tax Court Spam Installs Malicious Code
  • Apple MobileMe Users Are Attacked By Phishing Scam
  • Fox News Twitter Account Hijacked, Reports Obama’s Assassination
  • Malware Spam Attack Disguised As U.S. Customs and Border Protection Message

    • Posted in Spam, Trojans & Worms | Print This Post Print This Post

    This entry was posted on Thursday, April 10th, 2008 at 6:24 am and is filed under Spam, Trojans & Worms. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

    If you found this information useful, consider linking to it from your own website.
    Just copy and paste the code below into your website (Ctrl+C to copy)
    It will look like this: New Fake News Email Attack Circulating

    Leave a Reply

    Comments with unsolicited links to other resources will be marked as spam. DO NOT leave links in comments. Please leave your real email, it wont be published.

    *
    To prove you’re a person (not a spam script), type the security word shown in the picture. Click on the picture to hear an audio file of the word.

    « «
    » »