Sales & Marketing
Training & Development
PCs & Servers
Imaging & Printing
Fake 'Yahoo sold to Microsoft' spam boosts Rustock botnet
Jul 27, 2008 8:42 AM
A new large-scale botnet has been spotted forwarding what appears to be real news headlines about Microsoft, George Bush and Al Qaeda in an attempt to infect users.
Security vendor Marshal is warning that a growing large-scale botnet – called Rustock - is forwarding spam containing exploitive headlines in an attempt to infect users and grow its network.
Numerous small businesses and private web sites - so far predominantly in US and China - have been targeted in the campaign, claimed Marshal.
The security vendor warned a variety of headlines are being used to lure victims into clicking on a malicious link.
They include: “Yahoo sold to Microsoft, record price;” “Bush Down to 8 Friends on Myspace;” “Al Qaeda Reports Declining Revenues in Fiscal ’08.”
“Some of the headlines are hard to take seriously and some of them are believably enticing,” said Phil Hay, lead threat analyst for Marshal’s TRACE Team.
Hay said the Rustock spammers appear to be experimenting to see which types of headlines solicit the most hits from recipients.
However, if a recipient clicks on one of these links a webpage opens with a fake web video and a popup window that prompts the user to install a file called ‘codecinst.exe’.
“They are trying to disguise the installation of the executable under a believable pretext,” said Hay.
Marshal’s records revealed that Rustock is estimated to comprise over 150,000 infected PCs and distributes close to 30 billion spam messages daily which in terms of volume makes it one of the biggest malicious spam campaigns ever seen.
“Rustock is not a name many people are familiar with but it is well known within the security industry. Today it is one of the most established spambots. Rustock has been operating in various forms for more than two years,” said Hay.
Follow us on
Microsoft adds four new features to Windows 10
Facebook eases the pain of break-ups
Teaching coding to the poor can end inequality
Two-factor authentication coming in Windows 10
Ever wonder how inkjet cartridges are made?
Here's how HP tests all those ink catridges
Google to show anti-terrorism ads to would-be extremists
CrossPoint eyes Australian growth with $20m M&A fund
Oracle overhauls partner program
Send us your tips
You must be a registered member of CRN to post a comment.
Click here to login
Click here to register
IT provider Vintek boosts data centre firepower with Intervolve acquisition
Aims to be a data centre market leader.
Hewlett Packard acquires data protection vendor Trilead
Virtual machine backup vendor comes onboard.
Microsoft targets Google users with expanded Office 365 offer
Extends FastTrack to customers with 50 users.
Sign up to receive CRN email bulletins
Microsoft overhauls Enterprise Agreements in licensing shakeup
Exclusive: Hewlett Packard Enterprise reviews Australian distribution
AFP raids Gold Coast reseller for peddling counterfeits
3200 Dick Smith staff may have been underpaid
Hewlett Packard Enterprise loses Aussie channel chief
Powered by Disqus
Does the ATO need to close tax loopholes?
view previous polls »
Powered by Disqus
CRN Magazine looks in-depth at the emerging issues and developments for the channel, and provides insight, analysis and strategic information to help resellers better run their businesses.
What's in this issue?
Most popular tech stories
7 accounting packages for Australian small businesses compared: including MYOB, QuickBooks Online, Reckon, Xero
Cheaper tax returns thanks to Xero?
Tip: Your shop can use a smartphone instead of an EFTPOS terminal
Do you know these 12 eBay tips?
Do you use Dropbox? Here are some clever tricks
Photos: The CIO movements that made headlines in 2015
Former NAB exec to lead billion-dollar Centrelink IT overhaul
Photos: The old technology lurking in Australia's cupboards
Westfield ditches SMS feature over privacy issues
Microsoft makes big change to enterprise agreements
How to: How much RAM do you really need?
Top 25 fantasy games of all time
Playing politics in the Australian games industry
Top 15 obscure video game consoles for collectors
What is the dark web?
5 reasons why The Division will be best played on PC
Star Wars original trilogy heroes and villains
20 key tips for succeeding at Rainbow Six Siege
Review: Assassin’s Creed Syndicate
Interview: Paradox's Henrik Fåhraeus, on Stellaris
PC & Tech Authority
nextmedia Pty Ltd
. All rights reserved. This material may not be published, broadcast, rewritten or redistributed in any form without prior authorisation.
Your use of this website constitutes acceptance of nextmedia's
Terms & Conditions
Login to CRN
Email or Username:
* Email or Username required
* Password required
Forgot your password?
Don't have an account? Register now!
To request a
, enter the email address linked to your CRN account and we'll send one to you.
* Email required
* Invalid Email address
* Invalid Email address
Click here to return to Login Form
comments powered by Disqus.