Brazil air crash spawns trojan web site
The crash of a TAM Airbus 320 at Congonhas airport,Sao Paulo, Brazil two days ago has aleady been exploited by attackers attempting to spread an as yet unspecified trojan downloader. A link in an email purporting to direct recipients to a help line apparently points to a compromised Korean web site that has previously been used by Brazilian attackers to distribute malware. As indicated by a report from security service provider Websense, the message is in Portugese and is clearly directed at the families and friends of the victims.
On a previous occasion in April this year, mass shootings at a US technical college triggered a frenzy of speculative domain name registrations. The current incident is even more ghoulish, preying as it does directly on the bereaved.
(mba)