Wednesday, January 04, 2006

New WMF Trojan Being Distributed Via Spam


Click for larger image.


Mikko writes over on the F-Secure "News from the Lab" Blog:

There's a new trojan spam run underway, exploiting again the WMF vulnerability.

The exploit code is taken directly from the last Metasploit distribution. So the Metasploit exploit is assisting botnet herders and spyware distributors to take over the computers of users who still have no Microsoft patch to close the hole.

In this particular case the spammed message was a fake warning from Yale University professor about student vandalism that supposedly happened over the new year.

More here.

0 Comments:

Post a Comment

<< Home