Assassination Fascination
It’s been less than 24 hours since theformer Prime Minister of Pakistan was assassinated. As expected, themalware authors and distributors have already begun exploiting themorbid curiosity about Benazir Bhutto's death as a lure to spread theirmalice.
A simple search with terms such as "pakistan prime ministerassassination" yields results that include pages like the one shownbelow:
As some would expect, clicking on some of these links will mean that the old (technique-wise) ActiveX message box will appear:
The problem with many of these links is that the ActiveX Object ismalicious. For example, following the link in the above image downloadsa malicious file hosted on a server in Denmark. The maliciousdownloaded file is detected by Symantec products as Trojan.Emcodec. It just goes to show, even death isn’t sacred to some.
About Security Response Blog
Our security research centers around the world provide unparalleled analysis of and protection from malware, security risks, vulnerabilities, and spam.
Filter by:
Recently on Twitter
- You can find Symantec’s blog post on MSFT’s February #PatchTuesday updates here: http://t.co/kuRYUH5014 Feb 2012
- MSFT patches six critical vulnerabilities: http://t.co/bhNCCM8h14 Feb 2012
- Revamped Fake #Android Market for SMS Fraud http://t.co/mlrosRUH #malware10 Feb 2012
- Is Waledac spam dirtying the Russian 2012 elections? http://t.co/6gWaIyq610 Feb 2012
- Trojan.Activehijack found in the wild using a known #Office #vulnerability. http://t.co/7L8Xszwr09 Feb 2012