The email Storm Trojan has changed again. Today, the Storm has reverted back to the greeting card theme. Sample subject lines include:
A Labor Day E-Card
A Labor Day Greeting
A Special Card
A Special Greeting
Funny Labor Day Card
Happy Labor Day
Here it is...
The Big Labor Day Weekend
Your Card Is Waiting
Your E-greeting
Your E-Greeting is waiting.
Your friend has sent you a card.
Your Friend Sends A Labor Day Greeting
The email body is HTML, and contains a link to a website hosting malicious code. As usual, the URL embedded in the HTML contains a IP address, which you can usually see if you hover over it with your mouse.
If you click on the link it will take you to a website that will attempt to exploit vulnerabilities in your browser.
As before, be wary of clicking on links in any unsolicited email, and in light of these recent Storm attacks, be doubly suspicious of any links with an IP address.
MailMarshal customers should note the current SpamCensor is detecting these messages as spam and no further action is necessary.
