Dubai PR Network, Online Press Release from Dubai and Middle East
 
Computer Software(Technology)
Filter PR by
  
The Birth of Royal Baby Blackhole Exploit Kit Run
 

Dubai, United Arab Emirates : Since the first official announcement in early December last year, the world had eagerly awaited for the birth of the firstborn child of Prince William and Kate Middleton. After months of anticipation, the Duchess of Cambridge has recently given birth to a son, the new Prince of Cambridge.

But amid the celebrations, an old threat resurfaced. We spotted spammed messages related to the royal baby birth. The speed of these messages is remarkable, considering the official announcement was given July 22nd at 4:24pm (BST).

These messages appear to be from ScribbleLive, a service that provides real-time engagement platforms. The offer, of course, is false, and clicking on links in the email will only trigger multiple redirections that are typical among Blackhole exploit kit (BHEK) spam runs. BHEK is a page that cybercriminals use to determine what software versions are used by a victim so that the page can deliver the “correct” exploit.

In this case, the script that triggers the redirections is detected as JS_OBFUSC.BEB. Based on initial reports, US, Japan, and Australia were the top countries that accessed the final URL in the infection chain. As more users from the UK go online during their morning, looking for news about the royal baby, we can expect to see more infection hits from this area.

Exploit kits such as the Blackhole Exploit Kit offers cybercriminals great convenience in terms of deploying spam runs. It becomes much easier for them to modify the different aspects of a spam run: its social engineering lure, the exploits it uses, and its payloads.

These social engineering lures often come in the form of recent events, such as the Boston Marathon incident and the election of Pope Francis.

This particular BHEK run is not limited to the royal baby alone. Other spammed messages took advantage of the controversy surrounding the upcoming sci-fi film Ender's Game. While these messages are made to look like an article from CNN, clicking on links will trigger the same redirections as that of the royal baby spam.

Furthermore, Trend Micro have found another spam run using this theme that pretends to be a CNN news story discussing what the US president would give as a gift to mark the birth.

The exploit kit code is detected as JS_OBFUSC.BEB, with the Java exploit detected as JAVA_EXPLOYT.RO. This particular exploit targets two vulnerabilities in Java: CVE-2013-1493 and CVE-2013-2423. Both of these vulnerabilities have been patched by Oracle. The ultimate payload is a Trojan detected as TROJ_MEDFOS.JET.

  • Figure 1. Sample spam email about the royal baby
  • Figure 2. “Royal Baby” related threats started appearing half a day after the official announcement
  • Figure 3. More than half of the hits came from the US
  • Figure 4. Sample spam email about Ender's Game
  • Figure 5. Fake CNN news report

About Trend Micro

Trend Micro Incorporated (TYO: 4704; TSE: 4704), the global cloud security leader, creates a world safe for exchanging digital information with its Internet content security and threat management solutions for businesses and consumers.  A pioneer in server security with over 20 years' experience, we deliver top-ranked client, server and cloud-based security that fits our


customers' and partners' needs, stops new threats faster, and protects data in physical, virtualized and cloud environments. Powered by the industry-leading Trend Micro™ Smart Protection Network™ global threat intelligence data mining framework, our products and services stop threats where they emerge – from the Internet. They are supported by 1,000+ threat intelligence experts around the globe.


Additional information about Trend Micro Incorporated and its products and services are available at Trend Micro.com. This Trend Micro news release and other announcements are available at http://NewsRoom.TrendMicro.com and as part of an RSS feed at www.trendmicro.com/rss. Or follow our news on Twitter at @TrendMicro


Posted by : Dubai PR Network Editorial Team
Viewed 18324 times
PR Category : Technology
Posted on : Thursday, August 1, 2013  12:05:00 PM UAE local time (GMT+4)
Replication or redistribution in whole or in part is expressly prohibited without the prior written consent of DubaiPRNetwork.com.
Previous Story : SAP Offers Fast Track to Innovation Via a Flexible Path to t...
Next Story : Study Reveals SAP Partners to Earn US$220 Billion Through 20...
Email this article Print this article

Share this article with your friends and followers
NewsVine
Back to Section Home

Related Stories



 
 
Most Viewed Press Release posted in the last 7 days
Enjoy Smoother Skin with the current obsession from PMD - The Personal Microdermabrasion R... [6789-Views]
A new model for the ladies enriches the Corum AC-One collection with luscious femininity [6112-Views]
Energize & Refresh Your Skin With the Foreo Luna 2 for Men [5789-Views]
Saint Honore Haussman [5758-Views]
The new urban warrior unleashed - Corum injects modernity and athleticism into its Admira... [4313-Views]
6 Ways To Wear The Houndstooth Print [4264-Views]
From Dubai Police's floating police station to Etisalat's Lazareth Flying Motorcycle – ele... [4240-Views]
Hamdan bin Mohammed calls on the city to be ‘In It Together' for the Dubai Fitness Challen... [4227-Views]
Medusa Lock Icon [4093-Views]
Middle East Retail Forum (MRF) 2019 focused on RetailNEXT [4032-Views]
One stop shop for classifieds and deals in UAE- QUOODO.com [3995-Views]
This visually-impaired Emirati knows no impossible [3989-Views]
Heritage village at Global Village offers a glimpse into Emirati traditions [3874-Views]
Marks & Spencer Launches Its New Sleepwear Collection for AW19 [3867-Views]
OMEGA's new Museum [3855-Views]
The Coffee Club in Al Bateen, Abu Dhabi re-opens with a refreshed new look [3843-Views]
Choithrams Customer lends her voice to World Food Day in support of The United Nations Wor... [3831-Views]
Al Tayer Battles on in China After Aquabike Setback [3697-Views]
More than 1,900 beneficiaries at Al Mizhar and Umm Al Sheif Islamic Cultural centres in th... [3636-Views]
Expo Centre Sharjah announces winner of 1KG gold [3538-Views]
Malabar Gold & Diamonds inaugurates its relocated outlet in Hamdan Street, Abu Dhabi on 10... [3446-Views]
Revving The Engines At Rallylegend 2019 With Eberhard & Co. [3373-Views]
The Workwear Edit [3331-Views]
Dubai-Based NRI business leader donates INR 10m to his Alma Mater to setup Innovation and ... [3288-Views]
Union Coop Hosts Almarai's Gifting Ceremony For the Second Time [3251-Views]
 
RSS Facebook Twitter LinkedDin
 
Top Sections
 
Top Stories