Michael Jackson
Spam campaign is using current interest in the Jackson trial to spread a malicious Trojan

Jacko suicide Trojan spreading fast

Hackers go wacko with zombies

Written by Iain Thomson

vnunet.com, 10 Jun 2005

Michael Jackson is being used to recruit PCs for a network of zombie computers under the remote control of hackers.

Security software company Sophos is reporting a massive spam campaign using current interest in the Jackson trial, at which the jury is currently considering its verdict.

The email, which contains several spelling mistakes, is headed 'Re: Suicidal aattempt' and carries the following message:

"Last night, while in his Neverland Ranch, Michael Jackson has made a suicidal attempt. They suggest this attempt follows the last claim was made against the king of pop. 46 years old Michael has left pre-suicid note which describes and interpretes some of his sins. Read more..."

If users follow the URL they reach a page indicating that the site's bandwidth has been exceeded. However, the site contains a Trojan program called Troj/Borobt-Gen and attempts to install the malware onto the computer via a patchable flaw in Internet Explorer

Once infected the computer becomes part of a botnet, a network of slave PCs that can be used to generate spam or take part in online denial of service attacks.

"There's loads of it about at the moment," said Carole Theriault, security consultant at Sophos. "The volume of spam is ramping up as the day progresses."

This is not the first time that self-styled 'king of pop' Jackson has been used as a hook by hackers. In 2004 a link purporting to show the singer's home videos used a similar tactic to infect PCs with the Hackarmy Trojan.

Hackarmy has been used repeatedly in this kind of attack, and has demonstrated the effectiveness of headline-grabbing spam by using hooks like Osama Bin Laden, American hostage Nick Berg and Arnold Schwarzenegger.

"We find that once this type of spam lands in employees' inboxes, all common sense about suspicious emails goes out the window," said Mark Herbert, founder of managed email security firm intY.

"Against their better judgement, people will follow the link that downloads a dangerous Trojan onto their computer. Businesses need to continually warn employees to be on their guard."

Tags:

Further reading

Tony Blair Trojan hides key-logger

Spammers launch malicious email attack   More...

Osama spam spreads new malware

Social engineering with politics   More...

Security

The latest wave of cyber-crimes and acts of vandalism have demonstrated once again that many systems are still vulnerable to attack.   More...

Related articles

Russia emerges as spam superpower

Dramatic rise in junk email from compromised Russian computers   More...

Do you agree?

Have your say on this article

Advertisement

Job of the week

More IT jobs

Search thousands of IT jobs :

Search thousands of IT jobs:

Advanced search

Hiring now on ComputingCareers:

Related IT jobs

More IT jobs

Search thousands of IT jobs :

Search thousands of IT jobs:

Advanced search

Advertisement

Watch

16 May 2008

2.97 MBXP on OLPC, broken dreams and Yahoo fights back More...

15 May 2008

3.28 MBDark fibre, mobile TV and solar power More...

14 May 2008

2.66 MBOnline inequality, mobile thumbprints and corporate raids More...

Listen to more

Poll

HOME WORKING

HOME WORKING

Do you let any or all of your employees work from home?

Previous poll results

Newsletter signup

Sign up for our range of FREE newsletters:

Existing User

Newsletter user login:

Enter email address to edit your newsletter preferences

Spotlight

OLPC

OLPC to ship with Windows XP

Microsoft teams up with One Laptop per Child project   More...

The Sims

The Sims goes flat-pack with Ikea

Virtual world gets Swedish wood   More...

Advertisement

Microsoft-Yahoo

Yahoo board fights back at Icahn

Investor accused of 'significant misunderstanding' in Microsoft saga   More...

MySpace

Woman charged over MySpace suicide

Lori Drew indicted on federal charges   More...

Advertisement