More contract malware spammed out

by Graham Cluley on December 1, 2008 | Comments Off

Filed Under: Malware, Spam

The start of a new week has brought some minor variations to the contract malware I warned you about on Friday.

The malicious messages that are being spammed out are pretending to be changes to a contract - some related to business activities with well known firms like Johnson & Johnson, Starbucks or Google, and others pretending to be connected with a retirement plan.

Here are a couple of examples:

retirement

johnson

The dangerous files attached to these emails in the samples we're seeing in our traps are called contract.zip or New_Contract.zip. Sophos intercepts them as Troj/Invo-Zip.

If you use other vendors' products, make sure that they are properly updated and capable of stopping these threats.

About the author

Graham Cluley is senior technology consultant at Sophos. The readers of Computer Weekly voted him security blogger of the year in 2009 and 2010, and he pipped Stephen Fry to the title of "Twitter user of the year" too. Which was nice. He was also named "Best Security Blogger" by the readers of SC Magazine in 2011. You can subscribe to Graham's updates on Facebook, follow him on Twitter and circle him on Google Plus for regular updates.