Previously quiet net is now spewing spam again, Websense researchers say

Dark Reading Staff, Dark Reading

January 15, 2011

1 Min Read

An old threat has reappeared in the new year, researchers said this week.

According to a blog by researchers at Websense, the Waledac botnet appeared in a new version in the last days of 2010, sending out large amounts of new year-related spam messages. It then stopped spamming in the evening of Jan. 4.

On Tuesday morning a new variant of Waledac was distributed to members of the botnet, according to Websense. "On Wednesday, it started spamming again, but now it's back to sending pharmaceutical spam promoting 'the magic blue pill,' which we have seen previous versions of Waledac do in the past." As in previous spam campaigns, the spammers are using redirections via compromised legitimate sites, the researchers say.

When clicked, the link leads to a Canadian pharmaceutical spam page, according to Websense.

"The new spam campaign doesn't redirect to malicious content, just to spam content," the blog says. "But that could change at any point if the people behind Waledac decides to grow the botnet.

Have a comment on this story? Please click "Discuss" below. If you'd like to contact Dark Reading's editors directly, send us a message.

About the Author(s)

Dark Reading Staff

Dark Reading

Dark Reading is a leading cybersecurity media site.

Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

You May Also Like


More Insights