A malware attack has been spammed out widely via email to internet users, posing as a message about photos.
In the attack, cybercriminals attempt to trick unsuspecting users into opening an attached file in their browser, redirecting them to a webpage hosted on a Russian website that takes advantage of the Blackhole exploit kit.
The notorious Blackhole exploit kit then attempts to infect visiting computers through a wide number of vulnerabilities.
Here’s a typical message that has been spammed out – in this case, pretending to come from a LinkedIn user:
Subject: Your Photos
I have attached your photos to the mail (Open with Internet Explorer)
The attached file has a name of Image_DIG[random number].htm. If you make the mistake of opening the file attachment in your…
Read more in my article on the Naked Security website.