“Storm Trojan” spam attack is massive

April 13th, 2007

Here's a malware spam attack that you want to avoid at all costs:

A massive spam outbreak that tries to trick recipients into opening a file attachment that can hijack their computers has already broken records, security companies said today.

According to researchers at Postini Inc., the spam run is the largest in the last 12 months, and more than three times the volume of the two biggest in recent memory: a pair of blasts in December and January. "We're seeing 50 to 60 times the normal volume of spam," said Adam Swidler, senior manager of solutions marketing at Postini.

Arriving with subject headings touting Worm Alert!, Worm Detected, Spyware Detected!, Virus Activity Detected!, the spam carries a ZIP file attachment posing as a patch necessary to ward off the bogus attack. The ZIP file, which is password protected -- the password is included in the message to further dupe recipients -- actually contains a variant of the "Storm Trojan" worm, which installs a rootkit to cloak itself, disables security software, steals confidential information from the PC and adds it to a bot army of compromised computers.

It's a huge spam attack too:

Postini has already counted nearly 5 million copies of the spam in the last 24 hours, and calculated that the run currently accounts for 87% of all malware being spread through e-mail.

"Expect this to grow much larger," Swidler said. "It should top out at 60 million messages within the next 24 hours."

Update your antivirus (don't have any?  Go get some .... Now!!!), and be wary of all unsolicited email attachments sent your way.  Send any that promise to be patches for vulnerabilities straight into oblivion, along with any promising riches that are too good to be true.

This entry was posted on Friday, April 13th, 2007 at 20:46 and is filed under Stay Secure. You can follow any responses to this entry through the RSS 2.0 feed. Both comments and pings are currently closed.

One Response to ““Storm Trojan” spam attack is massive”

  1. Boxbe Blog » Blog Archive » Email news roundup for Wednesday, April 18, 2007 Says:

    [...] Massive spam shot of ‘Storm Trojan’ reaches record proportionsAccording to a recent article in Computerworld, the Storm Trojan virus attack is sending 50 to 60 times the normal volume of spam. The trojan contains a rootkit to cloak itself and it adds the computer to it’s botnet army to perpetuate the trojan horse. Scary stuff. [via PC Doctor] [...]