t’s been less than 24 hours since the former Prime Minister ofPakistan was assassinated. As expected, the malware authors anddistributors have already begun exploiting the morbid curiosity aboutBenazir Bhutto's death as a lure to spread their malice.
A simple search with terms such as "pakistan prime ministerassassination" yields results that include pages like the one shownbelow:
As some would expect, clicking on some of these links will mean that the old (technique-wise) ActiveX message box will appear:
The problem with many of these links is that the ActiveX Object ismalicious. For example, following the link in the above image downloadsa malicious file hosted on a server in Denmark. The maliciousdownloaded file is detected by Symantec products as Trojan.Emcodec. It just goes to show, even death isn’t sacred to some.