Follow up to yesterdays post about CNN.Com Daily Top 10, today we have a new one. This one has the subject of CNN Alerts: My Custom Alert. The email “From” address is random, and the content looks legit except for the Full Story link. This is the one that takes you to the site that immediately ask for you to install an updated version of flash. This is the virus, the payload…. This virus is part of the Rustock Rootkit and Spam Bot.
Recently I wrote about the “UPS, FedEx, and US Customs Email Virus” today I want to tell you about the CNN.Com Daily Top 10 email going out. I’m seeing this from allot of different sources and it is pretty heavy out in the wild. I’m sure you have probably already seen it somewhere. The interesting points of this one, the virus payload is not in the email but from the links in the email. This allows it to by pass most virus scanners. It is NOT From: user@cnn.com but from a randomly generated or infected users email address. The links in the email take you to sites, not cnn.com, that want to show you a video but says you have the wrong flash player installed. Other points:
CNN Daily Top 10
