Forged spam from the FTC contains keylogger.

31 October 2007

Someone out there apparently takes a dim view of the US Federal Trade Commission going after spammers (when it gets around to it) because they're sending spam forged from the FTC with malware attached. The spam takes the form of a complaint against the recipient, and asks them to open a document attached to the message. It's actually a keystroke logger that, when installed, records everything the user types from then on and sends it off periodically to someplace on the net. Understandably, they're not pleased with this stunt, and they're asking usres to forward copies of the e-mail (malware attached) to them and to delete the original copy.