Sponsored by..

Monday 30 April 2012 / malware

There's a spam run this morning (probably one of the familiar LinkedIn / Printer / CareerBuilder / Pizza / etc spams) that is trying to direct users to a malicious payload on (OVH, France. Wepawet report here) that then also tries to download an additional malware component from (cheekyshare.com, US).

Blocking access to these IPs would be prudent.

No comments: