Sophos Cloud Optix
SophosLabs has been intercepting an X-rated spam campaign, designed to promote hardcore porn websites.
Emails have been spammed out purporting to have an adult video attached, using a variety of names.
The subject lines can vary, but each has an HTML file attached with a woman’s name.
Juliet Morton represents new movie (JulietMorton.html)
Mona Fletcher returned with new movie (MonaFletcher.html)
Destiny Patterson shot unbelievable episode (DestinyPatterson.html)
Rachel Ruiz made fantastic video (RachelRuiz.html)
Destiny Ayala shows herself in clip (DestinyAyala.html)
Amber Nichols introduced her new video (AmberNichols.html)
The emails themselves are very basic, and are designed merely to lure unsuspecting recipients into clicking on the attached file.
If you do click on the attached file, however, your browser will be redirected to one of a series of pornographic websites.
Sophos products are blocking the spam messages, and are being updated to detect the attached files as Mal/JSRedir-K.
Remember to always be cautious of clicking on unsolicited attachments.
Clearly, having your browser visit a hardcore porn website could be hard to explain to your boss (or, indeed, your partner) – but aside from that the bad guys could easily redirect your browser to visit a website with malicious intentions to infect your computer too.
Am I the only one who feels that hard-core porn sites are getting so desperate for visitors that they have to come up with a worm to redirect people to their sites ?
Oh my. If you click an attachment which you think will open a hardcore porn video – it will actually link you to a website with hardcore porn videos! *gasp*
On a separate note, I don't think porn sites are desperate for visitors. They have always tried to lure people that want to see porn (or cannot resist clicking a porn link if they see one, which to be fair includes about 90% of men), but I don't think they ever suffered a shortage of visitors.
At least this way, one could "accidentally" click the link at work and accidentally" be taken to a site.