Trojan uses Hotmail, Yahoo as spam
hosts.
BitDefender has issued a warning that a new threat--dubbed
Trojan.Spammer.HotLan.A--is using Hotmail and Yahoo accounts to send
e-mail spam.
The trojan uses automatically-generated accounts, suggesting that
spammers have found a way to bypass the captcha systems, whereby new
accounts aren't created until the creator guesses correctly which
letters are depicted in an image.
Every active copy of the trojan accesses ah account, then pulls
encrypted spam e-mails from a website, decrypts them and sends them to
(presumably valid) addresses taken from yet another website.
"There are only about 500 or so new accounts being created
every hour," BitDefender. "But still, we've seen 15,000+
Hotmail accounts being used so far. It's hard to estimate how many
spam e-mails have already been sent."
The spam e-mail currently being distributed is trying to lead users
to a site that advertises pharmacy products. Common spammer techniques
are used in the e-mail body, such as bayesian poisoning and a random
e-mail subject.
www.bitdefender.com
COPYRIGHT 2007 A.P. Publications
Ltd. Reproduced with permission of the copyright holder. Further reproduction or distribution is prohibited without permission.
Copyright 2007, Gale Group. All rights
reserved. Gale Group is a Thomson Corporation Company.
NOTE: All illustrations and photos have been removed from this article.