Bogus Evernote alert leads to exploit kit
Posted on 17.02.2014
Bookmark and Share
Evernote users are being actively targeted with an email spam campaign that tries to trick them into following a malicious link.


Sent from accounts@pcfa.co.in and titled "Image has been sent", the email pretends to be a notification from Evernote that alerts the user to an image he or she needs to check out, and which is apparently hosted on Evernote.

Unfortunately, that's not true. It leads the user to a malicious site that is believed to host the Angler exploit kit and which, upon a successful vulnerability exploitation, saddles him or her with malware.

Dynamoo’s Blog's Conrad Longmore believes that the spam campaign in question has been mounted by the so-called RU:8080 gang, which has a history of similar spam runs impersonating legitimate Internet services such as Pinterest, Dropbox, etc.










Spotlight

Dissecting the unpredictable DDoS landscape

Posted on 23 April 2014.  |  DDoS attacks are now more unpredictable and damaging than ever, crippling websites, shutting down operations, and costing millions of dollars in downtime, customer support and brand damage, according to Neustar.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Wed, Apr 23rd
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //