Virus writers have created a worm which poses as breaking news alerts. Crowt-A’s subject line and attachment share the same name, but continually change to mirror the front-page headline on CNN’s website. The message text is also lifted from CNN as part of a social engineering technique designed to trick users into believing infected emails are pukka. Windows users induced into clicking on the infected attachment surrender control of their PCs to crackers. Crowt-A installs a keylogger which captures sensitive data, such as online banking login details, and forwards it to attackers. Infected machines are also turned into relay stations for the worm, spewing copies of it to email addresses harvested from infected PCs. Few instances of the worm have been spotted thus far. Crowt-A is noteworthy in marking an evolution of social engineering tricks, rather than for the relatively low risk it poses. Full Story
About OODA Analyst
OODA is comprised of a unique team of international experts capable of providing advanced intelligence and analysis, strategy and planning support, risk and threat management, training, decision support, crisis response, and security services to global corporations and governments.