All the latest UK technology news, reviews and analysis
|
|
|
16 Oct 2009
Websense has warned that a major attack has been detected against Microsoft's Outlook Web Access service.
The internet monitoring firm said that it is seeing around 30,000 emails a day which urge users to visit a web site and download a security update file, which in fact contains malware.
The email message reads: 'We are informing you that, because of the security upgrade of the mailing service, your mailbox settings were changed. In order to apply the new set of settings click on the following link.'
What makes the attack unusual is a high level of personalisation. The page that loads when the recipient clicks on the link is very convincing because it uses the victim's email address and domain name.
"We have seen customisation like this before, but it is not very common. As the angle is Outlook Web Access, a corporate/enterprise system, it is very likely that the targets are primarily corporations," said Websense.
"Websense Security Labs has seen a rise in banking Trojans targeting corporations because, not only do those accounts have more money in them, they can typically also do international wire transfers directly from the online banking system."
The malware makes the PC part of the Zbot botnet and allows full remote control by the botnet controller.
Latest stories from Security
Related articles
Related jobs
Poll
What is the most important IT priority for your company this year?
EU data protection overhaul contains "bureaucratic tick box-proposals", says information commissioner Christopher Graham in exclusive interview with V3
Connect with V3.co.uk
This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes
Why good data management at all levels is essential in the modern business (video, 6mins)
INSIDE SALES / BUSINESS DEVELOPMENT WEST LONDON...
QA Tester | Peterborough, Cambridgeshire...
TECHNICAL SALES / ACCOUNT EXECUTIVE / WEST LONDON / MARKET...
TECHNICAL SALES / BUSINESS DEVELOPMENT WEST LONDON...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?
Free Training and You Don't Need to Buy a Computer
What a lot of people who are new to computing don't realize is that the government offer free funding for lots of training courses called ILAs - individual learning accounts. ILAs have been around a number of years but there is still a Iot of people paying for training courses who could be getting them for free. It would be useful to not only write an article on this but also emphasize the fact that you don't need to own a computer as they are usually supplied by your training provider. There's free computer use at local libraries (including internet use and emailing) and they often run free short taster courses. The staff are usually qualified in ECDL and prove an invaluable source of knowlege and patience! The adults that I teach are often 'silver surfers', unemployed or homeless so the information on the above is vital to them and very often they are not aware of this, in fact I find most students do not know this information until they attend a training course and by then it is too late as the ILA needs to be in place before they book on a course. There's plenty 'ins and outs' to ILAs and booking on courses but once you're 'in the know' you're not 'out of pocket' when it comes to computing.
Posted by: Pamela Brown 21 Oct 2009