Friday, September 10, 2010

Malicious Email Campaign Circulating

US-CERT Current Activity

Malicious Email Campaign Circulating

Original release date: September 9, 2010 at 8:46 pm
Last revised: September 9, 2010 at 8:46 pm


US-CERT is aware of public reports of malware spreading via email.
These reports indicate that the malicious email messages contain the
subject line "Here you have" or "Just For You" and contain a link to a
seemingly legitimate PDF file. If users click on this link, they will
be redirected to a malicious website that will prompt them to download
and install a screensaver (.scr) file. If they agree to install this
file, they will become infected with an email worm that will continue
to propagate through their email contacts.

US-CERT encourages users and administrators to take the following
preventive measures to help mitigate the security risks:
* Install anti-virus software, and keep its virus signature files
up-to-date.
* Do not follow unsolicited web links received in email messages.
* Refer to the Recognizing and Avoiding Email Scams (PDF) document
for more information on avoiding email scams.
* Refer to the Avoiding Social Engineering and Phishing Attacks
document for more information on avoiding social engineering and
phishing attacks.

Relevant Url(s):
http://www.us-cert.gov/cas/tips/ST04-014.htmlhttp://www.avertlabs.com/research/blog/index.php/2010/09/09/widespread-reporting-of-here-you-have-virus/

http://www.us-cert.gov/reading_room/emailscams_0905.pdf

====
This entry is available at
http://www.us-cert.gov/current/index.html#here_you_have_email_malware