CYBEROAM ADVISORY: INCREASED LEVELS OF VALENTINE’S DAY SPAM ATTACKS ANTICIPATED
Cyberoam Warns Emails with Valentine’s Day Focused Subject Lines Could be Result of Massive Malware Spam Campaign
Newburyport, MA, February 13, 2008
Cyberoam, a division of Elitecore Technologies and the leading innovator of Unified Threat Management Plus (UTM+) solutions, today advises that the Cyberoam Internet Threat Response Team warns Internet users of increased spam attacks tied to Valentine’s Day, Thursday, February 14. Spammers are including attachments and links in emails leveraging subject lines such as ‘I Love You Soo Much;’ ‘Inside My Heart;’ or ‘You… In My Dreams;’ ‘My Valentine Sunshine;’ and, ‘Be My Valentine,’ to exploit unsuspecting targets. Once these attachments are opened or the links are clicked, malware is instantly downloaded.
According to Cyberoam partner Commtouch, the Valentine’s Day spam campaigns began mid-January in mid-level volumes and were generated from zombies. The messages are only around 2k, many with hyperlinks to an IP address, an indicator of a zombie-attack.
The success of these attacks depends on social engineering techniques that are targeting a younger demographic, particularly students and teenagers that will use the Internet to buy discounted Valentine’s gifts, flowers and send e-cards. In fact, every day in the U.S. there are at least 11 million teenagers between the ages of 13 and 23 on the Internet — making this demographic group a prime target for attack.
“Spammers are renowned for tying large-scale spam attacks to significant holidays and events, so it’s important for organizations to warn employees and students against opening emails from people you don’t know,” says Joshua Block, VP of North American Operations, Cyberoam. “As these attacks can happen at any time of the year, we strongly recommend that all organizations ensure their security solutions are up to date to recognize and block potentially harmful files. Organizations should also look to set user-based policies for Internet access to ensure that employees and students aren’t able to visit Web sites that could be potentially laden with malware.”
Spam attacks of this nature often lead to a malware download that can infect PCs, and potentially lead to a download of the Storm Worm botnet that is notorious for spreading emails with malware that can launch Denial of Service (DoS) attacks. These attacks also often lead to phishing email campaigns that put many in danger of information and identity theft.
Enabling organizations of all sizes to protect against spam attacks, Cyberoam uses the Commtouch RPD(TM) technology to analyze large volumes of Internet traffic in real-time. Unlike traditional spam filters, it does not rely on email content, so it is able to detect spam in any language and in every message format (including images, HTML, etc.), non-English characters, single and double byte, etc. Cyberoam incorporates this technology within its UTM+ appliances, which deploy identity-based functionality across all of its features.
Cyberoam delivers a complete range of security features such as identity-enabled Firewall, VPN, Gateway Anti-Virus/Anti-Spyware, Gateway Anti-Spam, Intrusion Prevention System, and URL/Web Content Filtering PLUS identity-based Network Access Control (NAC), in addition to Bandwidth Management with Multiple Link Management — all over a single platform. Cyberoam UTM+ appliances offer integrated Internet security to over 1,000 enterprises globally, including corporations, educational institutions and government organizations.
Cyberoam UTM+ appliances offer comprehensive protection against existing and emerging Internet threats, including viruses, worms, Trojans, spyware, phishing, pharming and more. Cyberoam identity-based solutions provide the complete range of security features expected in a traditional UTM platform such as stateful inspection firewall, VPN, gateway anti-virus, gateway anti-malware, gateway anti-spam, intrusion prevention system, content filtering, but also includes Identity-Based Network Access Control (NAC) in addition to Bandwidth Management and Multiple Link Management over a single platform. Cyberoam solutions are certified by the West Coast Labs with CheckMark UTM Level 5 Certification, ICSA Lab, an independent division of Verizon Business, and the Virtual Private Network Consortium. Cyberoam has also received the 2007 Global Excellence Awards for Integrated Security Appliance, Security Solution for Education and Unified Security, and the 2007 Tomorrow’s Technology Today Award for Unified Security. Cyberoam has offices in the Newburyport, MA and India, and Asia-Pacific. For more information, please visit www.cyberoam.com
About Elitecore Technologies
Elitecore Technologies is the global provider of Cyberoam UTM+ appliances. Elitecore’s other divisions include Crestel Convergent Billing Solution that meets the voice, data, video billing and customer care requirements of Tier-1 service providers and 24online Billing and Bandwidth Management Solution for hotels, hotspots and Internet service providers. Elitecore has a strong R&D base and support center in India; it has sustained a healthy growth rate of over 100% since inception. For more information, please visit www.elitecore.com