Trojan preys on swine flu concerns
People duped into visiting bogus Centers for Disease Control sites
Security specialists Symantec are warning of a new scam that uses the swine flu scare to lure victims into visiting a fake Center for Disease Control (CDC) website that ultimately infects visitor machines with a Trojan horse.
Emails that claim to come from the CDC are found to contain a link to a bogus webpage that is designed to look like the original. The URL then leads the unsuspecting user to an executable file named vacc_profile.exe, which has been identified as the Infostealer.Banker.C Trojan.
Symantec claims that Infostealer.Banker.C could potentially steal sensitive information from the compromised computer.
One reason why this latest attack stands out from others is because the URL is personalised to include the email address of the recipient, making it look more genuine and less like the usual mass-mailed spam baits.
Though no attacks have been reported in the Middle East as yet, people should avoid directly accessing links in emails and websites, and instead take the time to type out the required URL in their browser window.