SophosLabs has intercepted a malware campaign that has been spammed out, exploiting interest in the London Olympics which are currently making headlines and filling TV schedules around the world.
The emails, which have been spammed out so far in limited numbers, all have a subject line designed to entice sports fans into opening the messages:
Huge scandal with the USA Women's Gymnastics Team on the 2012 London Olympics
Part of the email reads:
Recent Olympic gold medal winner, USA Women's Gymnastics winner Gabrielle Douglas, faces a lifetime ban after reportedly testing positive to banned diuretic furosemide. With details of the case still emerging, British Olympics Committee has ordered a suspension of the athlete until final results arrive.
View the video on youtube now
However, clicking on the link takes you to a page that looks similar to the YouTube website, but the lookalike webpage runs various pieces of JavaScript code, and asks uses to download an Adobe Flash plugin to view the content.
Sophos products have detected the malware as Troj/Agent-XIK and Troj/JSRedir-IA.
#Olympic Email poses as US Women’s Gymnastics scandal video http://t.co/epn3iVWi #Malware
Olympic Email poses as US Women’s Gymnastics scandal #video – @Zer0Security http://t.co/x7dRepOm