CNN Spam Exploits Israel and Hamas Conflict

Written by Carl E. Reid on January 14, 2009

CNN Spam Exploits Israel and Hamas ConflictSue Walsh previously reported on fake CNN news email.  People were receiving spam email that looked like breaking news from MSNBC and CNN web sites.

The little spam “breaking news” gremlins have struck again. Capitalizing on the war torn region between Israel and Hamas, another fake email containing a trojan has been discovered. Similar to the previous CNN spam exploits, the website that you may be redirected to from this malicious email looks like it attempts to load a flash video. The web site Spyware Remove reports a  Adobe_Player10.exe file was detected by security researchers as TROJ_DLOADR.QK which is a trojan virus. It apparently has the ability to connect to another URL which may be detected as TROJ_INJECT.ZZ. This trojan infection, TROJ_INJECT.ZZ, is an information stealer that logs keystrokes, which launches a sniffer to gain access to security credentials that are entered through the computer keyboard.  In addition to the second Trojan, a rootkit was discovered to be dropped which is identified as TROJ_ROOTKIT.FX.

Some Proactive Measures
Many times email messages in Outlook and other email clients messages initially show up as a series of images. People often choose to load the images, which will enable redirection to the website link when the  image is clicked on with a mouse. If you choose to bypass or disable image loading, then it will prevent the web links from being active. In this particular case the “CNN” message would not be very effective in spreading malware because the embedded image link cannot be followed, if image loading is turned “off”.

Consider sharing information to your end user community about setting up a spam rule in Outlook or whatever email system is being used. Although rules may not block every spam message, this type of rule can thwart disaster by sending dangerous virus infected messages to your junk mail folder. Instruct email users, step by step, to manually create an [Outlook] rule to help catch messages that contain either  “CNN” in the “From” email address, the email “Subject” or the actual “body” of the email. This simple technique creates an excellent filter to look for the specific text in three (3) different sections of an email to quickly move this malicious  message to your junk email folder.

I know from personal experience that time taken to create a simple rule like this is definitely worth a pound of prevention, with these types of deadly spam emails. The best spam defense is the proactive offense in continuously educating your end user email community.

About Carl E. Reid

Developing his career from the mail room to the board room, Carl E. Reid has achieved success by skillfully blending 40 years of technology and business intelligence experience with his passion for helping companies succeed. Carl is founder and CEO of NetTECH Systems Reid & Associates, Inc., an emerging technology consulting company located in the New York City area. One of his specialties is 15 years as a collaboration and email infrastructure consultant. He has implemented and supported Lotus Notes/Domino and other types of SMTP gateway/network configurations in small to large global companies up to 33,000 employees. Some of his clients have included IBM, Citi, JPMChase, Oxygen, LVMH - Moet Hennessy, MeadWestvaco, non-profits and professional organizations. Carl is a Savvy Business Owner, Public Speaker and Author. His articles have appeared in Network World, Computer Monthly magazines and hundreds of web sites. Combining business technology consulting with professional blogging, Carl specializes in advising clients how to best leverage the Internet as a tool for high impact visibility. Carl's speaking style combines humor with expertise, and his advice is always down-to-earth and practical. He personally publishes Library of Congress recognized newsletter blog, http://www.SavvyIntrapreneur.com and http://www.iTechSpeak.com. Carl wrote the original "Professional Blogger Job Description", being used as standard document within companies. As a business career coach, Carl teaches professionals how to run their career as a profitable business.
  • (required)
  • (required)