Hackers have begun cashing in on the Virginia Tech university tragedy by spamming out malware-infected emails purporting to offer cameraphone footage of the attack which resulted in more than 30 deaths.
Email messages carry a photograph of gunman Cho Seung Hui and claim to link to a Brazilian movie website carrying footage of the campus shootings.
But clicking on the link downloads a malicious screensaver file which installs a banking spyware Trojan.
The Trojan attempts to steal passwords, usernames and other information from online bank users, opening the possibility for identity theft and allowing bank accounts to be raided by cyber-criminals.
"It is pretty sick that cyber-criminals use tragic events like this in their attempts to make cash, but sadly it is not the first time and unlikely to be the last," said Graham Cluley, senior technology consultant for Sophos.
"It is of paramount importance that everyone treats unsolicited emails with suspicion, and thinks twice before they run a unsolicited program or click on a link.
"Regular antivirus updates, firewalls, security patches and a good serving of common sense is a must."
Past malware and spam campaigns have taken advantage of headline breaking news stories such as Hurricane Katrina, the Indian tsunami and the terror bombings in London.
Latest Tesla news: Tesla stock price tanks amid reports of 'widening probe' by SEC and claims the base Model 3 loses money
SEC 'probe' takes its toll on Tesla as new research suggests that Tesla loses $6,000 on every $35,000 Model 3
10nm Cannon Lake Core i3-8121U CPUs make a rare outing with Intel's NUC mini PC
'Notorious' Australian child hacker thought he had executed 'flawless' hack
The former employee says that Tesla fired him for bringing the accusations to management internally