A variant of the Storm worm is able to analyze network traffic and insert a link to a malicious Web site into text posted in blogs, webmail and bulletin boards. A variant of the well-known and troublesome worm is being used in a spam attack that is luring blog, bulletin board and webmail (Internet-based e-mail) users to connect to a malicious Web site, according to Dmitri Alperovitch, a principal research scientist at Secure Computing Corp.
Alperovitch explains that there is a new component in the variant that enables it to analyze network traffic on the infected computer and dynamically insert a link to the malicious site into text -- whether it's a blog post, a bulletin board entry or an e-mail sent through a webmail system. The users' text will contain their own content, along with the link and a note that lures readers to check out a Web site with "fun" videos or e-card. .... I-Week has more.
Alperovitch explains that there is a new component in the variant that enables it to analyze network traffic on the infected computer and dynamically insert a link to the malicious site into text -- whether it's a blog post, a bulletin board entry or an e-mail sent through a webmail system. The users' text will contain their own content, along with the link and a note that lures readers to check out a Web site with "fun" videos or e-card. .... I-Week has more.
