Register

To become a member of ITProPortal Register here.

Already a member? Login here

Please register below. All we need is a valid email address and a password.

Please use a real email address as we need to email you to confirm your account.
Must be at least 6 characters long.

Benefits of joining ITProPortal:

  • Unlimited Access to Special Reports and White Papers
  • Exclusive offers and discounts
  • Free entry to all competitions
  • Access to beta sections of ITProPortal.com

Login to your account

Forgot your password?

Submit Register Cancel

Merril Lynch phish making the rounds

Author: Alex Eckelberry| Date: 05 May 2008| Tags:  Trojans
Merril Lynch phish making the rounds
  • IconText size Icon Icon

A new Merrill Lynch phish is hitting the rounds, with a dangerous payload.

The phish typically looks something like this:


Merrill12388123888


 


Subject lines include “New ML Business Centre Login Page”, “Merrill Lynch Business Centre with new Login Page?” and “Merrill Lynch Business Centre Website changing marketing process.”


The phish points to a website which pushes a new “certificate” that is needed.

Merrill12388123888a


The “Certificate” is a variant of Papras, a data-stealing trojan. However, don’t expect it’s only Merrill Lynch. We believe that this trojan is being used in a similar Colonial Bank scam, and there are likely others.

advertisement

Web Threat Level
brought to you by Trend Micro.