Storm Trojan Takes Social Measures

by admin February 27, 2007 at 3:39 pm

Web mail and message forums are the newest vehicle for the quickly spreading Storm Trojan, security researchers say. The latest attack injects a link to a malware site whenever infected users write online.

According to Symantec, Gmail, Yahoo Mail, Hotmail and AOL are among a number of vulnerable Web-based e-mail products. Message forums based on Virus Bulletin and phpBB software are also at risk, said a spokeswoman.

Users are first infected by clicking on an e-mailed link, which downloads a malware rootkit able to watch network traffic, according to Dmitri Alperovitch, Secure Computing’s principal researcher. The worm then inserts ‘Have you seen this link?’ in messages posted on a variety of Web mail and online forums.

Full story: