Adobe InDesign License Key malware attack spammed out

by Graham Cluley on December 7, 2011 | 3 Comments

Filed Under: Adobe, Featured, Malware, Spam

InDesign iconCriminal hackers have spammed out emails which pretend to contain a license key for the desktop publishing program Adobe InDesign.

Their intention? To infect your Windows computer with malware.

The emails pretend to come from Adobe, in a noxious campaign which bears many similarities to the fake Adobe Acrobat Reader updates spammed out yesterday.

A typical message looks like the following:

Adobe InDesign malicious email

Subject: InDesign CS4 License Key

Attached file: License_key_ID[random number].zip

Message body:
Hello,

Your Adobe CS4 License key is in attached document below.
We encourage you to explore its new and enhanced capabilities with these helpful tips, tutorials, and eSeminars.
Thank you for buying Adobe InDesign CS4 software.

Adobe Systems Incorporated

Sophos detects the malware as the Troj/Bredo-MY Trojan horse.

Remember - computer security is not just about keeping your anti-virus software properly updated. It's also about realising that companies are not in the habit of emailing you unsolicited attachments out of the blue.

Tags: , , , ,

3 Responses to Adobe InDesign License Key malware attack spammed out

  1. Maria says:
    December 7, 2011 at 3:03 pm

    Thanks for the update... I also got a suspicious email from "Adobe Update Notification" this week. The text read:

    Hello Dear,

    Adobe is pleased to announce new version upgrades for Adobe Acrobat Reader and Adobe X Suite Advanced features include:

    - Collaborate across borders
    - Create rich, polished PDF files from any application that prints
    - Ensure visual fidelity
    - Encrypt and share PDF files more securely
    - Use the standard for document archival and exchange

    To upgrade and enhance your work productivity today please open attached file.

    Copyright 2011 Adobe Systems Incorporated. All rights reserved.
    TrackNum: PCLOLS-2024919

    Adobe Systems Incorporated,
    Tue, 6 Dec 2011 14:20:26 +0100

    (I did not open the attachment - your post today confirms that this was a scam...)

    Reply Report comment
  2. artfrankmiami says:
    December 7, 2011 at 3:26 pm

    Luckily I already have the latest version, though I actually prefer QuackDistress better.

    Reply Report comment
  3. Robert Gracie says:
    December 7, 2011 at 8:37 pm

    the way I deal with scammers is very very simple I put all their scam ridden content in my spam folder and its problem solved for me

    Reply Report comment

Leave a Reply

Your email address will not be published. Required fields are marked *

*

You may use these HTML tags and attributes: <a href="" title="" rel=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <pre> <q cite=""> <strike> <strong>

About the author

Graham Cluley has worked in the computer security industry for more than 20 years, developing anti-virus software and doing quite a lot of talking about internet threats. He's won awards for his blogging, but is proudest of the text adventure games he wrote when he was still wearing short trousers. You can learn more about those (the games, not the trousers) at grahamcluley.com. Send Graham an email, subscribe to his updates on Facebook, follow him on Twitter and App.net, and circle him on Google Plus for regular updates.