BOSTON (Reuters) - Hackers are spreading a vicious computer virus through spam email messages that urge recipients to visit a bogus website offering vaccinations to protect them against another virus—the one that causes swine flu.
The email purports to be from the U.S. Centers for Disease Control, directing them to what looks like an official government website to fill out a vaccination form, said researchers from security firms Symantec Corp and AppRiver.
Security researchers said they began seeing millions of spam messages on Tuesday as part of a scheme to infect computers with malicious software that lets hackers take control of computers.
Computer Type: PC/Desktop System Manufacturer/Model Number: Custom builds = 2 OS: W7 Ultimate x64/W10 Pro x64/W11 Pro Triple Boot - Main PC W7 Remote PC Micro ATX W7 Pro x64/W11 Pro CPU: AMD Phenom II X4 975 Deneb 3.6ghz - 965 2nd remote pc Motherboard: Gigabyte GA-790XTA-UD4-Gigabyte GA-880GM-D2H remote pc Memory: Kingston Hyper X DDR3 1600 1.5v 16gb - Hyper X Fury 8gb 2nd Graphics Card: MSI HD Radeon 5750 1gb - MSI HD Radeon 6450 on mini tower Sound Card: Creative Labs X-Fi Xtreme Audio P - Realtek onooard 2nd case Monitor(s) Displays: ASUS VW199T-P 19" HP 2082a Main-HP 2082a 20" remote pc Screen Resolution: Asus 1440x900 - HP 1600x900 Keyboard: AZIO L70 Backlit Letters Gaming - ONN Cordless/USB Mouse: MSI DS200 Programmable, Logitech Cordless PSU: Corsair 750TX - primary / Corsair CX600 - second Case: Antec 900-2 - SSD compatible / NZXT Vulcan mini tower Cooling: Zalman CNPS9900A Hard Drives: WD Black 1TB HD per OS W7, W10, and pending W11 presently on 500gb OS Drive - Pending Triple 1TB HDs for Spanned Storage/backup volume
Single 2TB external USB enclosure, single 1TB System 7 Host/Boot drive, Pending 8TB external HD for system image b Internet Speed: 30mbps upgrade - primary hard wired - mini tower usb WiFi Browser: Cyberfox, WaterFox 64bit FF variants, FireFox x64, Pale Moon Antivirus: GFI VIPRE Internet Security 2014 on W7 2016 beta on W10, Other Info: Accomdata fan cooled usb 2.0 PIDE/Sata II, III external enclosure.
Sambient usb/eSata PATA/Sata II, III external enclosure.
Computer Type: PC/Desktop System Manufacturer/Model Number: CUSTOM ASSEMBLY OS: W7 Pro x64/W11 Pro CPU: AMD Deneb 3.6ghz - 965 Motherboard: Gigabyte GA-880GM-D2H remote pc Memory: Kingston Hyper X Fury 8gb Graphics Card: MSI HD Radeon 6450 DVI Output Sound Card: Realtek onooard Creative or Other separate PENDING Monitor(s) Displays: VIZIO 32" LCD TV Separate LCD Pending Screen Resolution: 1600x1080 Keyboard: ONN Cordless/USB Logitech Cordless Mouse: ONN USB/Cordless - Logitech Cordless PSU: Corsair 600W - THERMALTAKE 600W spare case Case: NZXT Vulcan mini tower Cooling: Twin 120mm Top Fans - 240mm Side Cover Hard Drives: WD 500GB OS Host/Boot WD Green 1TB Storage/Backup Internet Speed: DSL 5G Browser: MS Edge, FireFox, WaterFox x64, FireFox Nightly Other Info: OS Testing-Remote Access to Main TeamViewer
This is what the spammed email looks like. If recipients click on the link, it takes them to a bogus website where they're asked to register their details for a vaccination. Clicking through takes them to a "Download Archive" link, which triggers the malicious executable.
I just ran into another reference with a different title on the article pointing where the servers are according to McAfee.
According to rival security company McAfee, the fake CDC site is being hosted on servers located in Argentina, Chile, Colombia, Brazil, India and Malaysia.
Messages arrive bearing subject lines such as "State Vaccination H1N1 Program, "Governmental registration program on the H1N1 vaccination" and "Create your personal Vaccination Profile," McAfee added.
Computer Type: PC/Desktop System Manufacturer/Model Number: Custom builds = 2 OS: W7 Ultimate x64/W10 Pro x64/W11 Pro Triple Boot - Main PC W7 Remote PC Micro ATX W7 Pro x64/W11 Pro CPU: AMD Phenom II X4 975 Deneb 3.6ghz - 965 2nd remote pc Motherboard: Gigabyte GA-790XTA-UD4-Gigabyte GA-880GM-D2H remote pc Memory: Kingston Hyper X DDR3 1600 1.5v 16gb - Hyper X Fury 8gb 2nd Graphics Card: MSI HD Radeon 5750 1gb - MSI HD Radeon 6450 on mini tower Sound Card: Creative Labs X-Fi Xtreme Audio P - Realtek onooard 2nd case Monitor(s) Displays: ASUS VW199T-P 19" HP 2082a Main-HP 2082a 20" remote pc Screen Resolution: Asus 1440x900 - HP 1600x900 Keyboard: AZIO L70 Backlit Letters Gaming - ONN Cordless/USB Mouse: MSI DS200 Programmable, Logitech Cordless PSU: Corsair 750TX - primary / Corsair CX600 - second Case: Antec 900-2 - SSD compatible / NZXT Vulcan mini tower Cooling: Zalman CNPS9900A Hard Drives: WD Black 1TB HD per OS W7, W10, and pending W11 presently on 500gb OS Drive - Pending Triple 1TB HDs for Spanned Storage/backup volume
Single 2TB external USB enclosure, single 1TB System 7 Host/Boot drive, Pending 8TB external HD for system image b Internet Speed: 30mbps upgrade - primary hard wired - mini tower usb WiFi Browser: Cyberfox, WaterFox 64bit FF variants, FireFox x64, Pale Moon Antivirus: GFI VIPRE Internet Security 2014 on W7 2016 beta on W10, Other Info: Accomdata fan cooled usb 2.0 PIDE/Sata II, III external enclosure.
Sambient usb/eSata PATA/Sata II, III external enclosure.
Computer Type: PC/Desktop System Manufacturer/Model Number: CUSTOM ASSEMBLY OS: W7 Pro x64/W11 Pro CPU: AMD Deneb 3.6ghz - 965 Motherboard: Gigabyte GA-880GM-D2H remote pc Memory: Kingston Hyper X Fury 8gb Graphics Card: MSI HD Radeon 6450 DVI Output Sound Card: Realtek onooard Creative or Other separate PENDING Monitor(s) Displays: VIZIO 32" LCD TV Separate LCD Pending Screen Resolution: 1600x1080 Keyboard: ONN Cordless/USB Logitech Cordless Mouse: ONN USB/Cordless - Logitech Cordless PSU: Corsair 600W - THERMALTAKE 600W spare case Case: NZXT Vulcan mini tower Cooling: Twin 120mm Top Fans - 240mm Side Cover Hard Drives: WD 500GB OS Host/Boot WD Green 1TB Storage/Backup Internet Speed: DSL 5G Browser: MS Edge, FireFox, WaterFox x64, FireFox Nightly Other Info: OS Testing-Remote Access to Main TeamViewer