Fake CNN Website Stealing Sensitive Data

The RSA FraudAction Research Lab discovered a social engineering scam, that redirect users to fake CNN websites. This new fake CNN websites is not a part of CNN nor CNN website is injected with some malicious code but the attackers First send Email to internet users ask them to view the latest news and coverage on “Israel-Hamas conflict in Gaza”. The Email is look like this

Israel-Hamas conflict in Gaza

When users click on this fake link they where redirected to a fake CNN websites. The website is look like this

Fake CNN Website Trojan

When users click on video a pop-up message is come asking users to download and install Adobe Flash Player 10, in order to play the video but this will start download of a malicious software to victims computer and finally the Trojan installed on computer.

The Trojan that is launched when the link to the fake software installation is accessed is called a Trojan “SSL stealer” that captures financial and personal information of the infected user found on their computer.

Related Articles


Ajay Pathak 9 January 2009 Security , , , ,

One comment

  1. GrowthHormoneAntiaging
    #1

    January 13th, 2009 at 10:56 pm

    Whoa that’s its impressive.

Leave a Reply





XHTML: You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

One Trackback/Ping