Check Point has identified a phishing campaign linked to the start of the FIFA World Cup where cyber-criminals attempt to lure would-be victims into downloading a schedule of fixtures and a result tracker. When opened, the attachment uses a malware variant called ‘DownloaderGuide,’ a known downloader of potentially unwanted programs (PUPs) that is most commonly used as an installer for applications such as toolbars, adware or system optimizers. IT security experts commented below.
Tim Helming, Director Of Product Management at DomainTools:
“There is no limit to the creativity cybercriminals will employ to further their malicious aims. The World Cup wall planner, which has been a staple of competitions in the UK for years, is yet another pitch perfect campaign; it aims to exploit the passions of the general population in order to spread this malware, potentially including adware, which downloads unwanted applications onto devices. This could pose a risk to both individuals and organizations, as employees may be tempted to think that no harm can possibly come of downloading a World Cup wall planner onto a work network! This serves as simply the latest reminder that people should be 100% sure of the authenticity of any link before clicking on or downloading anything.”
Andy Norton, Director of Threat Intelligence at Lastline:
“83% of cybersecurity professionals believe that the FIFA World Cup does not pose a risk to their organization. According to a recent survey conducted at Infosecurity Europe, this malspam campaign ma be validation of that lack of concern. Installing a World Cupscheduler on a corporate device is an unlikely occurrence, as is allowing a well known PUP like downloader guide to escape anti-malware checks.”
To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional
Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes.The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.