[admin]

The Valentine’s Day campaign that the bot-building Storm Trojan horse has been running for weeks is running at such volume that even the FBI issued a warning yesterday. “With the holiday approaching, be on the lookout for spam e-mails spreading the Storm Worm malicious software,” the FBI said in an alert posted to the home page of its Web site yesterday. The Storm Worm virus has capitalized on various holidays in the last year by sending millions of e-mails advertising an e-card link within the text of the spam e-mail. Valentine’s Day has been identified as the next target.


“This year’s version looks like a stripped-down version of last year’s,” Jamz Yaneza, research project manager at Trend Micro said in an interview last month about Storm’s one-year anniversary. “They’ve optimized the way [the bot is delivered] over the past months,” he said, citing an example of how this year’s Valentine’s Day campaign would differ from 2007’s. “They’ve learned that there’s no need to add an attachment.” Trend Micro senior antivirus researcher David Sancho spelled it out in a post to the company’s blog on Monday. “The spammed e-mail messages are just plain text, but contain links that lead to malicious Web sites displaying one of eight cute Valentine images,” he said. Sancho’s post cycled through the images that Trend Micro captured from the malware-serving sites. “If you run the executable named ‘valentine.exe,’ your system will join the Storm botnet to start spamming other Internet users,” Sancho concluded.

Source: ComputerWeek