Storm Trojan Takes Social Measures
Web mail and message forums are the newest vehicle for the quickly spreading Storm Trojan, security researchers say. The latest attack injects a link to a malware site whenever infected users write online.
According to Symantec, Gmail, Yahoo Mail, Hotmail and AOL are among a number of vulnerable Web-based e-mail products. Message forums based on Virus Bulletin and phpBB software are also at risk, said a spokeswoman.
Users are first infected by clicking on an e-mailed link, which downloads a malware rootkit able to watch network traffic, according to Dmitri Alperovitch, Secure Computing’s principal researcher. The worm then inserts ‘Have you seen this link?’ in messages posted on a variety of Web mail and online forums.
Full story: internetnews.com