Symantec’s security researchers have warned of a variation of the Mespam Trojan (aka SpamToo-U), which is being distributed through the botnet brought about by the Storm (aka Peacomm) worm. The researchers claim that since the latest malware functions at a very low level, the pernicious links are included right ahead of Windows relays outgoing packets to the network that makes it very difficult to find what is going on the riddled PC.
Symantec’s Elia Florio wrote,
It will become a real threat in the future if the bad guys behind Mespam and Peacomm add code to spread over other popular Web channels (e.g. injecting malicious content while posting on YouTube, Myspace, RSS feed, or while using Google Office on the Web).
The pretentious services are included with the extensively utilized Vbulletin & phpBB forum software, as well as web mail by EarthLink, AOL, Bellsouth, FastMail, Gmail, Hotmail, Yahoo and other all the rage suppliers. The Mespam is also thought to distribute pernicious links in instant messages using Google Talk, AOL Instant Messenger and Yahoo Messenger.
