By Jennifer LeClaire E-Commerce Times
12/08/04 1:47 PM PT
According to antivirus company F-Secure, the file inside the e-mail attachment is not the Lycos "Make Love Not Spam" screensaver. It is a RAR SFX archive. The Trojan has an embedded keystroke logger, which can be used to steal personal information, such as user names and passwords.
Is Your Website Killing Customer Confidence? Your Website's privacy policy can be a key factor in a customer's decision to do business with you, and it is vital to ensuring you don't run afoul of your online legal and regulatory responsibilities. Need more reasons? Read on.
About a week after Lycos Europe stirred spammers with its anti-spam screensaver, hackers continue to attack the brand, this time with an e-mail that pretends to be Lycos offering the screensaver but which actually is a trojan.
Lycos Europe withdrew its controversial screensaver, which replied to unwanted spam with a denial-of-service attack, late last week.
The new malware-containing e-mail comes with a subject line that reads, "Be the first to fight spam with Lycos screen saver" and includes a file attachment that reads: "Lycos screensaver to fight spam.zip."
According to antivirus company F-Secure, the file inside the attachment is not the Lycos "Make Love Not Spam" screensaver. Instead, it's a RAR SFX archive.
The Trojan has an embedded keystroke logger that can be used to steal personal information, such as user names and passwords.
Blaming Spam
Ken Dunham, the director of malicious code research at iDefense, a Reston, Virginia-based threat intelligence firm, told the E-Commerce Times that this demonstrates new and increasing problems caused by spam.
"The sheer prevalence of spam and the convergence of malicious code and spam has really changed the face of threats as we see them today," he said. "It's not uncommon these days to see new applications are masquerading as something legitimate and being sent through spam."
Dunham predicts the problem with worms and bugs will only grow worse in 2005 as attackers get more sophisticated and leverage a combination of spam, viruses and hacking to perpetrate their crime.
"We've found that 60 to 70 percent or more of peer-to-peer downloads are actually malicious code," Dunham said. "They often look like pornography applications or antivirus software, and you think you are getting a good deal on something. You run it and the next thing you know, it's a Trojan."
Make Love, Not Spam
Perhaps ironically, Lycos Europe seems to have started an all-out war with its "Make Love, Not Spam" anti-spam program. However, Dunham said that although anti-spam groups are fighting the unsolicited e-mail as if it were a war, ethics should still apply to measures and counter measures.
"It's one thing if you are engaged in battle against an enemy in a military effort by a government," Dunham said. "It's another thing when everybody is doing what is right in their own eyes and crossing over into these gray areas of security practices or techniques that should or should not be employed. The courts will have to tell us eventually what is right and what is wrong."
IMlogic Leads Force into IM Malware Battle December 08, 2004
Most e-mail users are aware that opening an executable file (.exe) from an unknown source is a danger, but many don't know what an IM threat looks like. It can be carried in a URL from somebody in your buddy list, IMlogic's Francis deSouza said.
Related Stories
Spam Wars: Fighting the Mass-Mail Onslaught June 10, 2004
"The Can-Spam Act was never intended as a silver bullet, but it is an important and necessary weapon in a more comprehensive antispam arsenal," Scott Chasin, CTO of MX Logic, told TechNewsWorld.
Spam Wars: The Ongoing Battle Against Junk E-Mail June 08, 2004
"We believe that technology is the most powerful tool against spam. Technology is critical not only to protecting end users from unwanted e-mail, but from protecting users from other, often more devastating e-mail threats, including viruses, worms, blended threats and denial-of-service attacks," said Scott Chasin, CTO of MX Logic, whose company provides innovative e-mail defense technologies.
Fine-Tuning Spam Filtering May 18, 2004
The spam crackdown is causing headaches for companies, such as newsletter publishers, that ship large volumes of legitimate e-mail. Because of the crackdown on spam, these companies are seeing spikes in the number of undelivered messages. Consequently, users increasingly are missing important communications, and often they don't even realize it until they talk with the senders.
Goodmail CEO Richard Gingras on Stamping Out Spam February 09, 2004
"Goodmail Systems' volume mail stamp solution does not require wide adoption," Goodmail president and CEO Richard Gingras told TechNewsWorld. "It provides benefits to volume mailers and consumers on an individual ISP basis. Volume mailers have told us they will use the Goodmail platform as soon as we are operational with a single ISP."
Spam Costs $20 Billion Each Year in Lost Productivity December 29, 2003
Forrester analyst Jan Sundgren told TechNewsWorld that in addition to the volume of spam and its resulting expense, enterprise workers remain frustrated by even the limited amount of unwanted e-mail that slips through filtering nets, because it is often pornographic or otherwise offensive material.
Related News Alerts
More by Jennifer LeClaire
The Digital Car: Cool Automotive Accessories, Part 2 January 16, 2007
Not all the latest high-tech automotive electronics are built to entertain. Many give the driver more information and more control. Vehicle tracking devices can tell where the car is at any time, software installed in a smartphone can turn off a vehicle's security system whenever the owner approaches, and diagnostic tools can tell what's wrong with the engine -- and how much it'll be to fix it.
'World of Warcraft' Wows 8 Million Subscribers January 12, 2007
"World of Warcraft," the massively multiplayer online role-playing game, has reached the 8 million subscriber mark. Since debuting in North America in Nov. 2004, "World of Warcraft" has become the most popular MMORPG in the world. The franchise is available in seven different languages and is played on at least four continents.
AT&T Bids Goodbye to Cingular Brand January 12, 2007
Starting Monday, AT&T will launch a multimedia campaign to transition the Cingular Wireless brand name into its advertising and customer communications. The campaign will integrate popular imagery, phrases and icons from Cingular's traditional advertising, including the "raising the bar" tagline, the "Jack" character and the color orange.
Headline Feeds
comes with a subject line that reads, "Be the first to fight spam with Lycos screen saver" and includes a file attachment that reads: "Lycos screensaver to fight spam.zip."
Talkback: 
