April 28, 2009 2:32 PM PDT

Phishing with swine flu as bait

by Elinor Mills
  • Font size
  • Print
  • 5 comments

Phishers and spammers have caught swine flu fever and are exploiting fears around the outbreak to try to sell pharmaceutical products or steal information, security experts said Tuesday.

The e-mail scams have a subject line related to the swine flu and typically contain either a link to a phishing Web site or an attachment that contains malicious code, the US-CERT said in an advisory.

One scam features a malicious Adobe PDF document titled "Swine influenza frequently asked questions.pdf," according to Symantec. The malicious PDF file has been recognized as "Bloodhound.Exploit.6" and it drops malicious InfoStealer code onto the victim's computer, the company said.

One spam with a subject line "Suspected Mexican flu toll hits 81" includes news headlines from legitimate agencies and asks recipients whether they are located in the U.S. or Mexico and if they know anyone affected by the outbreak. Recipients are asked to go to a Web site to fill in a form or reply to the e-mail and include their e-mail address, address, and phone number, according to a post on Symantec's blog.

One e-mail scam exploiting the swine flu outbreak asks recipients for their contact information.

(Credit: symantec)

McAfee Avert Labs also has information on swine flu-related spam on its site.

Cisco IronPort estimates that swine flu-related spam accounted for up to 4 percent of the worldwide total at its peak.

CERT tips for protecting against scams are to avoid following unsolicited Web links or attachments in e-mail messages and maintain up-to-date anti-virus software. More information is on the CERT site here and in a downloadable PDF.

For information about the swine flu visit the U.S. Centers for Disease Control and Prevention Web site.

At its peak on Monday, swine flu-related spam represented nearly 4 percent of the worldwide total on Monday, according to Cisco IronPort.

(Credit: Cisco IronPort)

Elinor Mills covers Internet security and privacy. She joined CNET News in 2005 after working as a foreign correspondent for Reuters in Portugal and writing for The Industry Standard, the IDG News Service, and the Associated Press. E-mail Elinor.
Topics:

Vulnerabilities & attacks

Tags:

Swine Flu,

spam,

phishing

Share:
Digg
Del.icio.us
Reddit
Recent posts from Security
Q&A: Researcher Karsten Nohl on mobile eavesdropping
RockYou sued over data breach
Hacker Gonzalez pleads guilty in Heartland breach
Microsoft rebuts IIS vulnerability claims
More attacks expected on Facebook, Twitter in 2010
GSM crypto code cracked, engineer says
Web-based Lookout protects mobile devices, data
Hackers claim to crack Kindle copyright armor
Related
Using Facebook and Twitter safely
Scammers exploit Google Doodle to spread malware
Inside CNET Labs Podcast 73: Will that erase my drive if I push it?!
Facebook sues men for allegedly phishing, spamming
Trend Micro forecasts future threats
New iPhone apps aim to lower stress
So, is it safe to tweet now?
Twitter touts top trends of 2009
Add a Comment (Log in or register) (5 Comments)
  • prev
  • 1
  • next
by 42istheanswer April 28, 2009 5:26 PM PDT
Seriously??? It's very disappointing to know that there are people out there that would fall for this? I always asks users, 'would you give this information to a stranger that walked up to your house and asked for it?'. The answer is always 'No'. So I ask, why do they give information over the internet via email or whatever? Retards.
Reply to this comment
by Michael00360 April 29, 2009 10:55 AM PDT
and yet people do it every day.
Reply to this comment
by TSessions April 30, 2009 5:33 AM PDT
This just shows how low these criminals and thieves will go. I hope they all burn in hell.
Reply to this comment
by AlexanderNY May 2, 2009 9:40 AM PDT
Swine Flu (H1N1) updates as of 05/02/2009: cases confirmed in Florida, Missouri (follow the link bellow to see the map).
Swine Flu public awareness initiative maps outbreaks in North America and worldwide, constantly updating: http://www.jobrica.com/_RESOURCES/SwineFluAwareness.aspx
Stay safe and informed.
Reply to this comment
by BrianBack2 May 5, 2009 4:26 PM PDT
Web Conferencing lets you telework and AVOID face to face interaction without losing productivity. The VIACK Corporation (www.viack.com) is trying to address this problem head on by offering a 25% discount to any business, individual worker, medical professional, or impacted family member who purchases VIA3 in 2009. Purchasers can use the code ?fluworker25? at checkout to receive this benefit.
Reply to this comment
(5 Comments)
  • prev
  • 1
  • next
advertisement

15 sites that went kaput in 2009

Web sites launch all the time, but they also shut their doors. We highlight 15 that bit the dust this year.

Top 10 news stories of the decade

Let the debate begin: Was the iPhone more important than iTunes? Was anything bigger than Google finding a great business model? CNET offers its list of the 10 most important stories of the '00s.

About Security

Online security is threatened by more than hacking and phishing attempts. Check here for the latest updates on software vulnerabilities, data leaks, and rapidly spreading viruses--and learn how to protect your systems.

Add this feed to your online news reader

Security topics

advertisement
advertisement

Inside CNET News

Scroll Left Scroll Right
News
News site map
Latest headlines
Contact News
News staff
Corrections
CNET blogs
Popular topics
Apple iPhone
Apple iPod
Cell phones
CES 2010
GPS
LCD TV
CNET sites
CNET Site map
CNET TV
Downloads
News
Reviews
Shopper.com
More information
Newsletters
CNET Mobile
Customer Help Center
RSS
CNET Widgets
About CNET