Deadhouse Gates

President-elect Barack Obama is already targeted as the subject of a malicious malware campaign designed to steal information from infected computers. Following Obama’s presidential victory Tuesday, malware authors were quick to create a Trojan exploiting the high volumes of Web traffic surrounding Obama, security experts said. And so far, researchers say that spam capitalizing on Obama’s victory has experienced a sharp upward spike, comprising about 60 percent of all spam messages in what has become a globalized attack. “The hackers are taking advantage of Obama-mania,” said Graham Cluley, senior technology consultant for SophosLabs. “So many people have been excited or interested in (the election), that they might be susceptible to it.”

Specifically, malware authors are exploiting users’ post-election curiosity with an e-mail purporting to offer news of Obama’s victory. The legitimate-looking message then offers the viewer a link, allegedly of a video featuring Obama’s acceptance speech. However, in order to view the clip, users are advised to click on a link that will allegedly download the latest version of Adobe Flash player. Once users open the link, a Web site actually links to a file called adobe_flash_exe, a malicious Trojan downloader designed to distribute information-stealing software on unsuspecting victims’ computers. Upon execution, the compromised machine receives a RootKit that sends the user’s personal data to numerous command and control centers. Researchers at Web security company Websense said in a blog that they have seen at least 25,000 e-mails through the systems using that particular technique, which, in addition to distributing data-stealing malware, also incorporates the victim’s computer into a botnet, a network of computers programmed to perpetuate spam campaigns.

Source: CRN