Security experts are warning web users to be on their guard after discovering two attacks using the WikiLeaks scandal as a social engineering hook.
Symantec Hosted Services malware operations engineer Tony Millington wrote in a blog post that a new virus has been disguised as a PDF attachment named 'WikiLeaks' in a highly targeted attack aimed at a government body.
A brief sentence in the body of the email alludes to "the release of thousands of confidential US cables" designed to persuade the user into clicking on the malicious attachment to find out more.
"The email had been sent from a compromised account and, as is often the case, the social engineering didn't have a lot of thought behind it," said Millington.
The malicious executable injects itself into Internet Explorer and sends encrypted data over port 80.
It's unclear as yet exactly what the malware was designed to do, although initial analysis suggests that it could enable the attacker to steal usernames and passwords.
Symantec has discovered 24 copies of the attack so far, and is recommending users install the latest version of Adobe Acrobat Reader to stay safe.
The security firm also warned that spammers are using the WikiLeaks saga in a more widespread campaign.
The spam email has spoofed headers and the subject line 'IRAN Nuclear BOMB!', and purports to come from WikiLeaks.org.
A malicious link in the body of the email will open a backdoor using a predetermined port and IP address, allowing an attacker to steal passwords, log keystrokes, activate and view a webcam or even read write and execute files on the PC.
"We caution users not to open or click on the links or attachments of emails such as these," wrote Symantec security researcher Samir Patil.
"Symantec recommends having anti-spam and anti-virus solutions installed and up to date to prevent the compromise of personal machines or networks."
Geoengineering on the sea floor near glaciers would form a new ice shelf to prevent melting
Alterations in capillary blood flow can be caused by body position change
Curiosity rover is in 'normal mode' but not transmitting scientific data back to base
NatWest outage comes a day after Barclays' IT systems shut out customers and staff