The latest malware epidemic is trying love to get users to download a malware Trojan – and it's literally taking the world by storm, accounting for 8%, or one in 12, of all E-mails being sent.
The gang behind the latest incarnation of the Dorf Trojan – also known as Storm – have deliberately spammed out a "romantic" E-mail campaign, luring unsuspecting computer users to dangerous Web sites, Sophos warns.
Subject lines used in the attack are many and varied, but all pose as a romantic message. Some of them include "Falling In Love with You", "Special Romance", "You're In My Thoughts", "Sent with Love", "Our Love Will Last", "Our Love is Strong", "Your Love Has Opened", "You're the One", "A Toast My Love", and "Heavenly Love".
The body of the E-mail contains a link to an IP-address based website, which is actually one of the many compromised PCs in the Storm botnet. The site displays a large red heart, while installing malware onto the vistor's PC.
"This heart attack has been spammed out on a huge scale by an organized gang hellbent on stealing access to your PC for criminal purposes. It seems the hackers were too impatient to wait for St Valentine's Day this year before plucking on heart strings in their attempt to infect the unwary," says Graham Cluley, senior technology consultant at Sophos. "People will be truly love-sick if they let the malicious code run on their PC."
Sophos analysts believe that the worm code is designed to attempt to download further malicious code from the Internet designed to take over the PC, convert it into part of a zombie network, and use it to send spam on behalf of hacking gangs.