Security experts are warning users to be vigilant following a new round of fake greeting card attacks.
The spam messages purport to be greeting cards from Hallmark, and inform the user that they have been sent an e-card.
The email contains the same graphics used by the Hallmark site, appearing at first to be genuine. Unlike authentic Hallmark e-cards, however, the fake greetings contain an attachment.
When the user loads the .zip file, the attack begins. The Trojan .zip archive unpacks a an executable known as 'postcard.exe' as well as a run key to the Windows registry.
On restart, the run key automatically launches the malicious executable. The program adds the user to a remotely-controlled IRC botnet and then accesses the user's contact list to send out new attack emails.
The greeting card attack is hardly a new concept. The infamous Storm worm has made a regular habit of sending fake greeting cards at major holidays in an effort to expand its botnet. The tactic is extremely effective, as shown by its longevity.
"As long as recipients continue to fall for these old tricks, malware authors and spammers will continue to use them," said Matt Sergeant, a senior anti-spam specialist at MessageLabs.
Experts advise users to be wary of unsolicited or unexpected greeting cards, and never to open attachments in suspicious emails.
Unwary users heading for stormy waters 25 May 2007
Trade association warns that web users still not taking security seriously 07 Nov 2006
Spam emails and fake greetings to bring more malware 28 Oct 2009
Malicious email attachment masquerades as message notification 19 Jun 2009
Security firms warn of new round of scams 11 Feb 2010
New spam run uses fake money order to spread Trojan 27 May 2009
With small scale geo-engineering projects already underway, MPs have warned governments must begin work on the necessary regulatory framework 19 Mar 2010
Wide-ranging project aiming to produce low-cost, algae-based biofuel 19 Mar 2010
New £4.5m research programme to ask if people will want electric cars 19 Mar 2010
More news
As a journalist, I spend a fair amount of time defending the much maligned media industry to friends and family.... 18 Mar 2010
Andrew Williams casts his eye over some of the most popular green driving aids on the market 16 Mar 2010
From hydropower hot spots to record-breaking Texan winds, we run down the top stories from the past week 12 Mar 2010 More in-depth
Post your comment
Send an email to the Business Green editor at feedback@businessgreen.com
