Security Labs

Alerts

BOOKMARK THIS ALERT
  digg   |     del.icio.us   |     reddit
  newsvine   |     furl   |     technorati

New Storm tactic: Kitty Greeting Card

Date:10.11.2007

Threat Type: Malicious Website / Malicious Code

Websense® Security Labs™ has received several reports of a new Web site that is being distributed in spam sent out by those running the Storm attacks. For more details on the Storm attack, see (http://www.websense.com/securitylabs/blog/blog.php?BlogID=141).

This site poses as a free Ecard Web site. Users with unpatched computers are automatically exploited. Users with patched computers are prompted to download and run a file called "SuperLaugh.exe." This file contains the Storm payload code.

Sample email text:

View your Kitty Card now! (URL REMOVED)

Web site screenshot: