Asprox botnet: Phishers Bite Back with Malware Exploits Linked to Keywords

The minds behind the Asprox botnet are retaliating against visitors to their phishing page who put profanity or other flagged keywords into the phishers' phony log-in form instead of legitimate data. The phishing page contains logic that recognizes words like “phish” and retaliates with exploits targeting vulnerabilities in Microsoft Windows, according to a security researcher. […]

Share online:

The minds behind the Asprox botnet are retaliating against visitors to their phishing page who put profanity or other flagged keywords into the phishers' phony log-in form instead of legitimate data. The phishing page contains logic that recognizes words like “phish” and retaliates with exploits targeting vulnerabilities in Microsoft Windows, according to a security researcher. Criticize the people behind the Asprox botnet, and they take it personal—so much so that they will bombard you with malware, according to a report by SecureWorks.

The botnet, now at least 50,000-strong with bots, is sending out phishing emails posing as messages from banks in the U.S. and U.K. The links inside the email lead to a page with a phishing form that reacts to both incomplete forms and forms containing certain keywords, including profanity or the word “phish.” If users who filled out the form improperly click on the “confirm” button, their computers are assaulted with malware in retaliation.

Full Article

About The Author

Deepak Gupta is a IT & Web Consultant. He is the founder and CEO of diTii.com & DIT Technologies, where he's engaged in providing Technology Consultancy, Design and Development of Desktop, Web and Mobile applications using various tools and softwares. Sign-up for the Email for daily updates. Google+ Profile.