Hackers launched the "pharming" attack on Monday, Feb. 19 and authorities shut it down on late Wednesday.
"It was a professional team. It was very well planned," says Hubbard. "It was quite successful and very resilient.
"On Monday, the
first e-mail lure was spammed out. It contained the bogus news that Australian Prime Minister John Howard was struggling for his life after suffering a heart attack. The e-mails are set up to appear to be a link to a news story from
The Australian, a daily newspaper. The second e-mail lure offered up news of a cricket match in Australia. Hubbard notes he was surprised how many Americans were conned into clicking on a
link for more information about Australian cricket.
The e-mail lures directed users to connect to a
Web site for more information. When they clicked on the link, they were redirected to one of five different malicious Web sites, where their machines were infected with malware.
When anyone with a corrupted machine connected to a Web site for one of 65 banks or financial institutions, any information they entered there would be sent to both the real destination, as well as back to the hackers. The stolen information, along with more malicious code, was stored on a master server." [
source ]
Infection Rates :
Australia
35%,
US 32% , UK 11.5% , Others .5%