Sales & Marketing
Training & Development
PCs & Servers
Imaging & Printing
Fake 'Yahoo sold to Microsoft' spam boosts Rustock botnet
Jul 27, 2008 8:42 AM
A new large-scale botnet has been spotted forwarding what appears to be real news headlines about Microsoft, George Bush and Al Qaeda in an attempt to infect users.
Security vendor Marshal is warning that a growing large-scale botnet – called Rustock - is forwarding spam containing exploitive headlines in an attempt to infect users and grow its network.
Numerous small businesses and private web sites - so far predominantly in US and China - have been targeted in the campaign, claimed Marshal.
The security vendor warned a variety of headlines are being used to lure victims into clicking on a malicious link.
They include: “Yahoo sold to Microsoft, record price;” “Bush Down to 8 Friends on Myspace;” “Al Qaeda Reports Declining Revenues in Fiscal ’08.”
“Some of the headlines are hard to take seriously and some of them are believably enticing,” said Phil Hay, lead threat analyst for Marshal’s TRACE Team.
Hay said the Rustock spammers appear to be experimenting to see which types of headlines solicit the most hits from recipients.
However, if a recipient clicks on one of these links a webpage opens with a fake web video and a popup window that prompts the user to install a file called ‘codecinst.exe’.
“They are trying to disguise the installation of the executable under a believable pretext,” said Hay.
Marshal’s records revealed that Rustock is estimated to comprise over 150,000 infected PCs and distributes close to 30 billion spam messages daily which in terms of volume makes it one of the biggest malicious spam campaigns ever seen.
“Rustock is not a name many people are familiar with but it is well known within the security industry. Today it is one of the most established spambots. Rustock has been operating in various forms for more than two years,” said Hay.
Follow us on
Microsoft adds four new features to Windows 10
Teaching coding to the poor can end inequality
Two-factor authentication coming in Windows 10
Lenovo rumoured to be acquiring BlackBerry
Ingram Micro beefs up IP surveillance range
Ricoh gains exclusive entry to Kaseya's Platinum club
UXC racks up $100m with Microsoft and Oracle deals
iiNet, TPG mega-merger wins shareholder approval
Did Microsoft just backtrack on forced updates for Windows 10?
Send us your tips
You must be a registered member of CRN to post a comment.
Click here to login
Click here to register
Ads by Google
In the cloud, the channel is messy - get used to it
[Comment] Welcome to the convoluted virtual supply chain.
Distressed asset deal ends up killing buyer Wireline Wholesale
A cautionary tale in M&A.
Symantec loses Veritas channel boss to Dell
Klasie Holtzhausen follows Brenton Smith.
Sign up to receive CRN email bulletins
The Windows 10 feature Microsoft doesn't want you to know about
Seven reasons customers hate their cloud providers
Actually, Aussie businesses aren't buying cloud: ABS
Vodafone taps 7000 resellers with landmark Synnex deal
Mystery surrounds ISP after collapse from distie bad debt
Powered by Disqus
What's the best way to deal with phoenix businesses?
Give regulators (ASIC, ATO, courts) more power
Disties and vendors should be tougher with credit
There is no phoenix problem
It's too hard to solve
view previous polls »
Powered by Disqus
CRN Magazine looks in-depth at the emerging issues and developments for the channel, and provides insight, analysis and strategic information to help resellers better run their businesses.
What's in this issue?
Most popular tech stories
7 accounting packages for Australian small businesses compared: including MYOB, QuickBooks Online, Reckon, Xero
Do you use Dropbox? Here are some clever tricks
How much does it cost to use the NBN? 14 providers compared including iiNet, Telstra, Internode
What dual-SIM phones are available in Australia?
NBN gets ACCC tick for Optus and Telstra HFC takeover
Australia's leaders agree to end GST-free online goods
NSA releases Linux-based open source infosec tool
Google admits defeat with Google+
Cray to build Australia's biggest supercomputer
Vocus' next target: Telstra and Optus' customers
How to: How much RAM do you really need?
Top 25 fantasy games of all time
Now you too can make your own Deep Dream portrait
11 WhatsApp tricks you may not know about
Our government does not understand internet basics
Review: Intel i7-4970K
Review: Origin Genesis X99
Review: Turtle Beach Impact 700 Mechanical Keyboard
Runescape and coming home
Tech of the Year 2014
PC & Tech Authority
nextmedia Pty Ltd
. All rights reserved. This material may not be published, broadcast, rewritten or redistributed in any form without prior authorisation.
Your use of this website constitutes acceptance of nextmedia's
Terms & Conditions
Login to CRN
Email or Username:
* Email or Username required
* Password required
Forgot your password?
Don't have an account? Register now!
To request a
, enter the email address linked to your CRN account and we'll send one to you.
* Email required
* Invalid Email address
* Invalid Email address
Click here to return to Login Form
comments powered by Disqus.