Trojan Poses as IE7 Download
Spoofed email contains link to trojan downloader disguised as a link to Internet Explorer upgrade
October 18, 2006
If you get an email from [email protected] with a link to Internet Explorer 7 Release Candidate 1, don't go there: A trojan downloader will get installed and set up a backdoor into your computer.
The spoofed message's link takes you to a site that looks convincingly similar to a Microsoft page, but don't be fooled. The trojan installs via an IE browser vulnerability, according to SurfControl, which is tracking the malicious message and its spread around the Net. The scam is especially timely -- Microsoft today released IE7 for Windows XP. (See Anti-Malware Tools Trip Up IE7 Install.)
Downloaders are among the most prolific types of trojans today and are popular with spammers because they are relatively small pieces of code. Their job is to avoid detection and typically to disable AV and firewalls and then download more malware code. (See Most Popular Trojans.)
— Kelly Jackson Higgins, Senior Editor, Dark Reading
Microsoft Corp. (Nasdaq: MSFT)
About the Author(s)
You May Also Like
Key Findings from the State of AppSec Report 2024
May 7, 2024Is AI Identifying Threats to Your Network?
May 14, 2024Where and Why Threat Intelligence Makes Sense for Your Enterprise Security Strategy
May 15, 2024Safeguarding Political Campaigns: Defending Against Mass Phishing Attacks
May 16, 2024Why Effective Asset Management is Critical to Enterprise Cybersecurity
May 21, 2024
Black Hat USA - August 3-8 - Learn More
August 3, 2024Cybersecurity's Hottest New Technologies: What You Need To Know
March 21, 2024