Increase in phishing emails to steal passwords of Runscape players.
Kaspersky Lab has released a report on spam activity for May 2011. Compared with the previous month, the volume of spam in email traffic increased 2.1 percentage points, making up on average 80.8% of the total. A lowering of phishing messages was also noted, while the share of postings containing malware increased.
Terrorism as a Cover for Cybercrime
In May spammers actively used current hot topics in the news to deceive users. In particular, a surge in the number of messages was detected exploiting the news of the death of Osama bin Laden. Such messages contained malicious files as well as links to legitimate payware. News of the death of the world’s No. 1 terrorist was even used in the emails of the so-called Nigerian scammers. The trick they used to attempt to extract funds generally stayed the same: the scammers request payment of a small sum with the promise of being returned a much bigger sum in the future. Worthy of note is the fact that instead of traditional requests for “help”, in a new type of email users are threatened with their accounts being frozen on the pretext of suspicions of their being somehow connected with terrorists.
Malware in Spam: Personal Data Theft and Fake Antivirus Programs
Russia has become the world leader in terms of the quantity of malware found in emails detected by antivirus programs. The USA, formerly taking first place, now comes second: the quantity of infected emails sent to American users fell by 3.5 percentage points. The most widespread malware distributed via email was the Trojan-Spy program Trojan-Spy.HTML.Fraud.gen. Worms like Email-Worm.Win32.Mydoom.m, Email-Worm.Win32.Bagle.gt and Email-Worm.Win32.NetSky.q all remained high in the ratings, while newcomers included two Trojan-Downloader.Win32.FraudLoad Trojans. This type of program installs fake antivirus programs on PCs.
Online Games Becoming More Attractive to Phishers
The most marked changes took place in the ratings of web services attacked the most with the use of phishing emails. 4.67% of all phishing emails were intended to steal passwords for the popular free online game RuneScape. As a result, this platform made its debut in the top ten straight in at No. 3 – way ahead of World of Warcraft – the most popular online game in the world. RuneScape is of interest to cybercriminals more than even user details of the popular social networking site Facebook. But the overall leader in the rating remained the payment system PayPal, which saw a small rise in the number of phishing emails (23.28 percentage points up on the figure for April 2011).
The full version of spam activity for May 2011 is available at: securelist.com.