Consumer alert!

Received an e-mail message today saying I have “an e-card from a family member.” It included a link from “zzwrong.hk.” This is a variation of similar messages that usually included a random name — usually a female name — in place of “family member.” Clicking on the link takes the recipient to a Web site that attempts to exploit their Web browser, then returns a page stating “We are currently testing a new browser feature. If you are not able to view this ecard, please _click here_ to view in its original format.”

The link presented in “click here” goes to a Trojan downloader that downloads multiple components, making up a “Storm Worm” infection. Presumably, if any of the browser exploits above work, the downloader Trojan will be downloaded and run without user interaction.

Don’t click on the links, and don’t worry, any e-card from zzwrong.hk won’t be coming from any member of your family.

This entry was posted on Monday, June 25th, 2007 at 6:19 am and is filed under Internet hoaxes. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.