Take one pretty celebrity (take your pick from Jennifer Lopez, Britney Spears, Anna Kournikova).
Spam out an email claiming to contain sensational news about said celebrity (typically this will involve nakedness).
Infect the recipient’s computer when they open the attached file/click on the link.
On this occasion, the sexy celebrity is singer and hip-waggler Shakira. Whoever was behind the malware campaign didn’t claim that Shakira was naked (to be honest, that wouldn’t be much of a lure… I mean, once you’ve seen one of Shakira’s videos you’ve pretty much seen everything).
Instead, the email claims that Shakira has died, and invites you to open the attached Word document.
Security researcher Conrad Longmore on the Dynamoo blog has published more details of the malware attack, where he explains that the email’s Spanish-language text describes how Shakira supposedly died in a car accident.
From: El Universal [firstname.lastname@example.org] Date: 5 September 2014 14:50
Subject: Shakira muere en grave accidente
Muere Shakira en grave accidente
Esta madrugada a las 1:10 A.M. en el barrio la Macarena, Colombia. La conocida cantante e intérprete Shakira Isabel Mebarak Ripoll, sufrió un grave accidente automovilístico en el cual perdio la vida. Abordo del vehículo también se encontraba su manager, que quedó con heridas graves. Testigos, dicen que el auto conducido por este último, se dirigia a exceso de velocidad..
Para ver imágenes exclusivas y detalles de la noticia adjuntamos un documento con toda la información sobre este trágico acontecimiento.
El Universal © todos los Derechos Reservados 2014.
The email explains that if you are feeling ghoulish, you should open the attached Word document (named IMAGENES_01.doc) which claims to contain further information and images of the fatal road crash.
Seriously, why would anyone fall for a trick like this? Is it normal for news agencies to spam out details of a celebrity’s death *and* include an attachment containing photographs?
Sadly, many people are so addicted to having the very latest celebrity gossip that they probably fail to engage their common sense before clicking on the dangerous file.
Of course, opening the Word document is the very last thing you should do.
But if you do make the mistake, you will see a message (in Spanish) telling you how to disable Word’s security settings – which will, of course, allow malicious code to activate and allow it to download further malware from the net.
Be on your guard, and keep your anti-virus software updated.
Found this article interesting? Follow Graham Cluley on Twitter to read more of the exclusive content we post.