Fake Subpoena Phishing Attacks Rise

April 22, 2008 | by Christopher Nickson

Personalized e-mails with fake subpoenas link to Trojans, according to reports.

There’s always a new wrinkle, but one that’s just begun to surface is particularly insidious. E-mails personally addressed to a company’s chief executive, containing fake subpoenas, and asking the person to click on a link to access court documents.
 
The problem is that the link installs a Trojan on the businessman’s computer.
 
According to Norwegian security company Norman, which has reported the scam, the e-mails are very convincing. They claim to lead to US courts, but in fact come from a server in Jinan, China. The recipient is asked to install a plug-in to access the documents, but in fact installs the Trojan, taking the form of a digitally signed CAB archive. That extracts a file called 'acrobat.exe,’ which installs 'acrobat.dll.' This gives the Trojan access to all data that passes through the web browser and Windows Explorer.
 
Norman’s chief executive, Trygve Aasland, said,
 
“It is likely that a large number of people are tricked and infected, given that these emails look very real.”
 

Post Your Comment...Comments

Be the first to comment on the article!

Comment on this article




Please keep your comments relevant to this article. Email addresses are not displayed, they are only required to verify you are human.

When you submit your comment, an email will be sent to your email address with a confirmation link. Once you have clicked on that confirmation link your comment will be posted.

HTML is not allowed.


Join our newsletter to keep up to date on the latest Digital Trends content like Videos, Reviews, News and more delivered directly to your email!


Plus, get early access to contests and specials from our partners. Join today!





Loading...