Cutwail Botnet Showing Altered Spam Tactics
The spam botnet Cutwail is now working differently -it's distributing its bulk e-mails in massive numbers within every period of only few minutes thus attacking Internauts in millions within each single outbreak, states Symantec the security company.
Also according to Symantec, the spam mails rather than having malicious attachments contain web-links which take onto Upatre the malware installer for the Dyre banker Trojan.
A usual style is followed in the bait: the header declares vital message inside the e-mail posing as arriving from one genuine organization which the would-be victim may recognize else mayn't.
Often, e-mails associated with any financial matter like bank account report, invoice, tax return, fines etcetera thus far have been observed as drawing recipients' attention resulting in compromise of their accounts.
As per Symantec, sometimes the web-links take onto phishing sites which mimic login sites related to financial facilities that various organizations provide.
Security Researcher Nick Johnston from Symantec explains that the e-mail's objective pertains to making the recipient follow the given web-address that'll either take onto a phishing site or malware. An identical URL structure is used within all the assaults, wherein there's one hijacked legitimate domain in the URL, Johnston says. Softpedia.com reported this, January 28, 2015.