What is the problem?
CSIRC has been warned about a social engineering/Phishing campaign that attempts to capitalize on the recent tragedy at Virginia Tech. Spam messages with links to camera phone footage of the Virginia Tech shootings have begun flooding inboxes worldwide. These messages, however, are infected with malware and pose major security risks if opened.
Who is affected?
Enterprise email users.
What does it look like?
The message contains text directing users to supposed camera phone footage taken of the massacre in progress. However, if a user clicks on the provided link, they are directed to a file called “TERROR_EM_VIRGINIA.scr,” which installs a Trojan that can be used by cyber-criminals to steal passwords, user names and account numbers.
