Webroot spots its own IT security software being tapped for drive-by downloads
Hackers appear to have successfully linked the process of cracking small websites, then using them as a malware-infected landing pages for spammed email that offers subscriptions to online services at highly attractive prices.
This strategy pays off, Infosecurity notes, when legitimate subscribers to the advertised services see the messages, and are coming to the end of their subscription. Human nature takes over, and – curiosity piqued – the hapless internet users click through, and are infected.
According to Webroot threat analyst Andrew Brandt, the linked text in a spammed email his team recently spotted leads to a website that performs a 'drive-by download'. But it gets worse, as Webroot says its own IT security products are being used as subscription lures in the spammed messages.