Trojan offensive -- Hungarian success

An infamous malicious program has resurfaced in a new attack. The trojan malware called Bredolab is also widespread on the Hungarian net, VirusBuster warned. Few antivirus engines have been able to identify the new variants, but VirusBuster's software is one of them.

Researchers have reported a massive Bredolab outbreak, with at least one new variant every day over the past week. As in earlier attacks, the malware is distributed as an e-mail attachment. This time, the message is about fake DHL parcel delivery problems. Not surprisingly, the e-mails come from a random name, and a spoofed address. The malware load is contained in the attached "shipping label", a ZIP file whose name starts with the string "DHL_Label_".

The last major Bredolab campaign was observed late October, when the trojan was spread in fake "Facebook resetting confirmation" messages.

"The high number of variants in the current attack has created a difficult task for security companies. Few antivirus engines have been able to cope with it. Operating proactively, VirusBuster's software has detected all the versions of the malware", commented Gábor Szappanos, the head of VirusBuster's virus lab.