-
The Current Trend in Spam is Using SWF Redirects
- Source: Softpedia | Tags: Spam Emails, Commtouch Spam Lab, Spam, SWF, Malware | Posted by: Rupali | Posted on: Aug 28, 2008
-
One of the new trends in spam e-mails used for malware distribution is the use of maliciously crafted SWF files hosted on legitimate servers. The ActionScript code of the files includes a redirect that takes users to websites that host malware or prompts them to download the malware directly.
The beginning of August marked a spike in spam e-mail distribution that reached around 10 million spam e-mails according to the statistics released by the Commtouch Spam Lab. The number kept high during the entire month averaging around 7 million compared to 5 million last month. Their Zombie Lab statistics show an average number of 10 million zombie computers. This could be an indication that the increase in spam e-mail is connected to malware distribution.
The outbreak in spam e-mails using SWF redirects appears to have started at the end of July when over 7000 links to malicious SWF files hosted on legitimate servers were created. Alex Eckelberry, CEO of Sunbelt Software, posted several analyses of such SWF files on the Sunbelt Blog. One of the mostly used servers to host the files appears to be ImageShack, a very popular free online media hosting service.
The e-mails are trying to trick the user into opening a link by various methods like claiming they offer Vista security updates, free security software or interesting videos. The links can either be displayed in plain text or html format, in both cases the browsers having no problem in opening them and playing the SWF files.
Read full article »
- Rating: (out of 0 votes)
- Rate this article:
