Mytob spreads via spoof emails

Mytob spreads via spoof emails

The Mytob worm is spreading via spoof emails that appear to come from IT system administrators.

Virus protection company Trend Micro this week issued a warning after its infection reports showed the worm was spreading in the US, Australia, China, Hong Kong, India, Japan, Korea, the Philippines and Taiwan.

The worm reproduces by sending a copy of itself as an attachment to an email. The email appears with one of a series of official looking warnings in the subject line.

Examples cited by Trend Micro include “*IMPORTANT* Please Validate Your Email Account”, “Email Account Suspension” and “Notice:***Your email account will be suspended***”.

The emails also contain spoof text encouraging recipients to open the attachment, such as: “Once you have completed the form in the attached file, your account records will not be interrupted and will continue as normal.”

The worm collects target email addresses from the Temporary Internet files folder in Windows Address Book. It has a “backdoor” that allows hackers to gain virtual control over affected systems and also prevents users from accessing some anti-virus and security.



Enjoy the benefits of CW+ membership, learn more and join.

Read more on Operating systems software



Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:




  • Dissecting the Hack

    In this excerpt from chapter three of Dissecting the Hack: The V3RB0TEN Network, authors Jayson E. Street, Kristin Sims and Brian...

  • Digital Identity Management

    In this excerpt of Digital Identity Management, authors Maryline Laurent and Samia Bousefrane discuss principles of biometrics ...

  • Becoming a Global Chief Security Executive Officer

    In this excerpt of Becoming a Global Chief Security Executive Officer: A How to Guide for Next Generation Security Leaders, ...