Symantec Warns of New Security Breach

Email Print Digg This Add to del.icio.us

A new wave of Trojan spam is hitting enterprises' shores. Enterprise IT Planet reports the latest attack contains information-stealing malware hidden in innocuous-looking attachments that masquerade as resumes, photos and sales leads.

A new spam campaign making its way around the Internet features a credential-stealing Trojan concealed in attachments with subject titles that look familiar and safe, but they could end up stealing users' banking and other personal information once they're clicked on, according to security vendor Symantec.

In a security advisory Symantec said the Trojan.Zbot arrives as a .ZIP attachment in an unsolicited email that masquerades as something benign like a birthday invitation, a collection of photos or a resume.

"This Trojan has primarily been designed to steal confidential information, such as online credentials or banking details, but it can be customized to gather any sort of information from the compromised machine," Symantec security researcher Samir Patil wrote in the blog entry.

The attachment file size is 119KB and, according to Patil, often displays pseudo-random file names, such as "lance armstrong.zip," "pricing.zip" or "resume.zip."

Read the rest of "Symantec Warns of New Wave of Trojan Spam " at eSecurity Planet