Swine flu e-mail in Spanish links to data-stealing Trojan

This is the main page of the site that the malware is on, but it was probably hacked.

An e-mail referencing a vaccine for swine flu is circulating that includes a link to a malicious file on a Mexican Web site that is designed to steal bank log-in information, security firm SonicWall said on Friday.

The e-mail, which is in Spanish, has a link to the Qhost.NJI Trojan on a Web site that appears to be legitimate but has probably been hacked, said Nick Bilogorskiy, manager of antivirus research at SonicWall.

The Trojan, an executable file coded in Visual Basic, changes the host file on Windows computers so that if the computer is used to visit certain domains of Mexican banks the PC is redirected to itself without the user knowing it and the Trojan steals any log-in data that is typed, Bilogorskiy said.

Earlier in the week, Symantec said a malicious PDF had been discovered that masqueraded as a frequently-asked-questions document related to the outbreak. And there have been numerous reports of spam using swine flu-related subject lines that lure people to pharmaceutical sites, security firms have reported.

source :

Related Posts by Categories

Widget by Scrapur

0 feedback:

Post a Comment


Your Ad Here

About Me

My photo
Just an ordinary people who wanna retire early and travel around da World, Someday I Hope..I started this Blog in 2009 to connect and communicate with all of you that maybe I don’t even know before.

Blog's Network

What kind of topic do you like?



Music Blogs - BlogCatalog Blog Directory Blog-Watch - The Blog Directory Real Time Web Analytics Blog Directory - the high quality Links Directory for webmasters.
Real Time Web Analytics
traffic analysis