There have doubtless already been other cyber attacks seeking to exploit increased interest in the FIFA 2010 soccer world cup, but this is the first one that has come to my attention – and it’s a real doozy. The sneaky swine have downloaded and inserted vicious code into an existing PDF created by a legitimate organiser of touring packages to the event.

They then send out seemingly legitimate emails (like the one featured on Symantec’s analysis here) in an attempt to gain back-door access to targeted organisations. And there have been cases where they have targeted apparently less-sophisticated family members in an attempt to get them to forward the malicious attachments on.

What to do to avoid it? The usual: advise users not to open emailed attachments – even if they’re sent to by family members. Of course, such sage advice will not be followed and the attack will inevitably succeed.

Advertisements