• On MovieTome: See the villain of IRON MAN 2!
advertisementGet Smart about Business Spending
March 16, 2009 12:02 PM PDT

Scammers customize news to deliver you malware

by Elinor Mills
  • Font size
  • Print
  • 5 comments

Security experts warned on Monday of a new insidious e-mail scam that features false information about a bomb explosion in the recipient's hometown and leads to a malicious Web site.

The subject lines include "Take Care!" and "Are you and your friends in good health?" The e-mail includes a link to what looks like a news article on a Reuters page about the bombing. But the Web page and the news are fake, according to e-mail security provider Marshal8e6 and antivirus firm Sophos.

The scammers are using IP address geolocation techniques to figure out what city the recipient lives in and are localizing the fake bomb news to that location.

Meanwhile, clicking on the fake Reuters video page leads to malicious Waledac code being downloaded on the computer, the security firms said.

Earlier this year, the Waledac worm tricked people with fake Valentine's e-mails.

The fake page circulating now also includes Wikipedia and Google search links as "Related Links" at the bottom in an attempt to make the page look legitimate. However, missing words in the text of the story and poor grammar are giveaways that the page is fake.

Attackers are using IP address geolocation techniques to tailor fake news to the home town of the e-mail recipient in the latest Waledac scam.

(Credit: Marshal8e6)

Elinor Mills covers Internet security and privacy. She joined CNET News in 2005 after working as a foreign correspondent for Reuters in Portugal and writing for The Industry Standard, the IDG News Service, and the Associated Press. E-mail Elinor.
Topics:

News,

Vulnerabilities & attacks

Tags:

Waledec,

worm,

scam,

localized,

Reuters

Share:
Digg
Del.icio.us
Reddit
advertisement
Click Here
Recent posts from Security
Microsoft warns of IE exploit code in the wild
Chrome OS security: 'Sandboxing' and auto updates
E-tailers snagged in marketing 'scam' blame customers
McAfee warns about '12 Scams of Christmas'
Cisco launches iPhone security app
Town to photograph every car that enters and leaves
New Firefox 3.6 beta aims to cut crashes
Facebook adopts new privacy policy
Related
FAQ: Recognizing phishing e-mails
Bank Trojan botnet targets Facebook users
McAfee warns about '12 Scams of Christmas'
Phishing, worms spike this year, say Microsoft and McAfee
Spammy scams surfacing on Twitter, Facebook
Congress may require ISPs to block fraud sites
RSA reveals details behind re-shipping scam
For the Record Podcast: '12 scams of Christmas'
Add a Comment (Log in or register) (5 Comments)
  • prev
  • 1
  • next
by theteofscuba March 16, 2009 12:57 PM PDT
I would like to get on a mailing list for these things..email theteofscuba@hotmail.com
Reply to this comment
by sparrowhyperion March 16, 2009 1:07 PM PDT
I would love to have 5 minutes alone in a room with the moron who came up with this scam. Just me, him, and a lead pipe.....
Reply to this comment
by gertruded March 16, 2009 1:41 PM PDT
The scam and malware only affect Windows users. Switch to Ubuntu for on line activity. It dual boots with Windows easily.
Reply to this comment
by carrumba March 18, 2009 6:45 AM PDT
instead of complaining you could be glad you know how they procede and try to cheat and deceive you. Nice, really nice to involve IP geolocation.

--
www.megapanzer.com
Reply to this comment
by Stefaninafla March 18, 2009 11:06 AM PDT
The sad part is that many genuine news stories use equally poor grammar these days.
Reply to this comment
(5 Comments)
  • prev
  • 1
  • next
advertisement
Click Here

E-tailers linked to 'scam' blame customers

Priceline, Classmates.com, and Orbitz say customers should read the fine print before complaining about being charged to join loyalty programs they didn't want.

The 411 on early-termination fees

Verizon Wireless has doubled its early-termination fees for smartphones, but what does it mean for the rest of the industry?

About Security

Online security is threatened by more than hacking and phishing attempts. Check here for the latest updates on software vulnerabilities, data leaks, and rapidly spreading viruses--and learn how to protect your systems.

Add this feed to your online news reader

Security topics

advertisement
advertisement

Inside CNET News

Scroll Left Scroll Right
News
News site map
Latest headlines
Contact News
News staff
Corrections
CNET blogs
Popular topics
Apple iPhone
Apple iPod
Cell phones
Dell
GPS
LCD TV
CNET sites
CNET Site map
CNET TV
Downloads
News
Reviews
Shopper.com
More information
Newsletters
CNET Mobile
Customer Help Center
RSS
CNET Widgets
About CNET