Blackhole Exploit Kit Spam Run Using AT&T as Bait
Publish date: 03 de agosto de 2012
Spammers seeking to distribute blackhole exploit kits use of a legitimate email notification purportedly coming from AT&T. The message seeks to lure potential victims to click a malicious link. Once clicked, it redirects to a site hosting a malicious JavaScript. While users patiently wait for the website to load, the script is already pointing them to a blackhole exploit kit server, where an exploit code starts to execute. A .JAR file is executed, downloading other malicious files onto the victim's machine.
Trend Micro™ Smart Protection Network™ protects users from this threat by blocking the spam mail samples, as well as any related malicious URLs and malware.
Fecha/hora de bloqueo del spam: 03 de agosto de 2012 GMT-8
TMASE
- Motor TMASE: 6.8
- Patrón TMASE: 9082