subscribe: Daily Newsletter


Lure of the naked A-lister persists


PandaLabs has detected a series of junk mails that promise erotic pictures of celebrities (such as Britney Spears, Rihanna and Shakira) as bait to spread the Agent.IMB Trojan.

These emails are very simple: they have subjects such as “naked Shakira clip”, “Rihanna exposed” or “Scarlett Johansson spills boobs”, and include a link with the text “Download and Watch”.
If the user clicks the link, they will download a copy of the Agent.IMB Trojan to their computer. This malicious code copies itself to the system under the name “CbEvtSvc.exe” and creates a service with the same name to run whenever the system is started up.
“Although this social engineering technique is not new at all, given the number of cyber-crooks that keep using it is clear that there are still many users who fall into the trap,” explains Jeremy Matthews, head of Panda Security’s sub-Saharan operations. “Malware creators sometimes use the same kind of email to spread different malware strains, so it wouldn’t be surprising to find junk mail like this being used over the next few days to distribute other malicious codes such as downloader and banker Trojans.”