Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » Hurricane malware attack hits the net

Hurricane malware attack hits the net

by Nikola Strahija on September 2nd, 2005 Hurricane Katrina seems to be bringing out the worst in people on the net as well as on the streets of New Orleans. Spam emails pretending to offer links to news about Katrina are being used to tempt potential victims onto a site hosting Trojan malware.


The site exploits well-known IE vulnerabilities to install a variety of Trojans including Cgab-A, Borobot-P, Borobot-Q, Borodldr-H and Inor-R. Security firm Sophos reports that subject lines used in the malicious emails include, but are not limited to, the following: Re: g8 Tropical storm flooded New Orleans. Re: g7 80 percent of our city underwater. and Re: q1 Katrina killed as many as 80 people.

The malicious site, hosted in Poland, also hosts a secondary line of attack designed to trick Windows users, reports Secure Computing. It cynically offers a "free scan" for the Zotob worm that in reality infects users with code that gives hackers control over compromised Windows PCs.

Similar - though arguably less sophisticated attacks - followed last year's Asian Tsunami and July's London bombing attacks. The malware attack isn't the first Katrina-themed scam. Earlier cynical attempts to cash in on the Katrina disaster came in the form of fake charity email appeals and the time-honoured sale of catastrophe-related urls.


Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »