Sleazy slutty emails bombard inboxes, carrying malware

Graham Cluley
Graham Cluley
@[email protected]

Neon signAs many North Americans return to their offices after a long Labor Day weekend, they may find something unpleasant in their email inboxes.

A malware campaign has been widely distributed over the last couple of days, using a wide variety of different subject lines and attachment names.

There’s one thing in common between all the emails, however. All of the emails use sleazy slutty language to trick red-blooded men (we assume) into open the attached file.

The many different messages claim to come from what some would euphemistically describe as online “dating” websites. Typically the emails will claim to contain photos of a young woman in her twenties, who isn’t fussy about what kind of man she would like to hook up with (some say ages “between 21-99” are fine).

Sign up to our free newsletter.
Security news, advice, and tips.

Slutty email

As mentioned above, the subject lines and attached filenames can vary widely – but there’s definitely a theme..

Slutty subject lines

Sophos detects the earlier attacks as malware designed to infect Windows computers: Mal/BredoZp-B, Troj/Agent-TFW and Mal/BredoZp-ET.

And here are some examples of the latest instances we have seen, which Sophos detects proactively as Mal/Zbot-CX.

Slutty email

Slutty subject lines

If you make the mistake of opening the attached ZIP file, and running the files within, and you’re *not* protected by Sophos, you could be infecting your computer with a Trojan horse.

Once infected, your computer could allow a remote hacker to stealing information from your PC – all because you thought some sleazy slutty photographs of a young woman had fallen in your lap.

Social engineering tricks continue to fool users into making poor decisions – remember to always think with your head, not with your trousers.

Graham Cluley is an award-winning keynote speaker who has given presentations around the world about cybersecurity, hackers, and online privacy. A veteran of the computer security industry since the early 1990s, he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows, makes regular media appearances, and is the co-host of the popular "Smashing Security" podcast. Follow him on Twitter, Mastodon, Threads, Bluesky, or drop him an email.

What do you think? Leave a comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.