Another Valentine's Day...

...Another Chance to Get Infected!

I hope that you are all ready for a safe and pleasant, if not wonderful, Valentines Day on Saturday?

It seems that the bad guys and girls are back playing cupid again and couldn't resist the opportunity to try and get you to infect your computer, yet again using the guise of a valentine e-card, again. The latest wave of these started yesterday:

Here's a screenshot of one of the email that I've received:



If you are foolish enough to click on the link in the email, you'll end up on a page that looks like the one below, at least for now it does:



Very nice of them to offer you a tool to make your own valentine day greetings? Of course, in reality it is just an infected file used to recruit your PC into the botnet army of the author of this malcode.

When I first started to see these Valentine Day e-mails, late last week [a test run maybe?] the landing page looked like this instead:



However you spend the day, whatever you do for the 'love-of-your-life', don't become part of the collateral damage of the annual 'Valentine's Day [Malware] Massacre'.

If I see anymore 'bogus' Valentine's Day e-mails, I'll try and post details here when I can. Also, if you see any that I haven't yet posted about, then please let me know.

Hopefully, between us we can try and keep the annual massacre down to a mere scuffle! ;-)

At the time of posting this blog entry the detection of the offered files [at least two distinct unique files (MD5 hash value)] was very poor, with only 4 out of 32 tested scanners identifying that this is a malicious file.

Furthermore the file being offered is offering different file names, although the actual file is internally identical in many cases, as mentioned above.

If I get any further useful data or news then I'll try and post it here.

Oh, and don't forget the risk of getting an infection isn't just for Valentine's Day, it is for everyday of the year, don't let your guard down.......stay safe!