Another phishing expedition appeared on the Internet Thursday, this one dubbed W32/Cayam and targeting eBay users. Cayam, which poses as a message from eBay with a subject heading reading ‘Verify your eBay account information,’ actually contains a worm in its attached file. When that attachment is opened, the worm displays several legitimate-looking screens that ask the user to enter his eBay user ID and password, then complete a seemingly official form. The form request a whole host of personal and financial information, including the user’s Social Security number, credit card information, and bank checking account number. The worm propagates by lifting addresses out of the target PC’s copy of Microsoft Outlook and e-mailing copies of itself to others, and can also spread via the peer-to-peer Kazaa and eMule networks. Full Story
About OODA Analyst
OODA is comprised of a unique team of international experts capable of providing advanced intelligence and analysis, strategy and planning support, risk and threat management, training, decision support, crisis response, and security services to global corporations and governments.