The Idaho Department of Administration reports another spam attack associated with the Storm Worm.
Officials believe the e-mails are being blocked effectively but some may have made it past the filters. The e-mails appear to be electronic Valentine’s greetings and may contain attachments or links to potentially malicious Web sites. If a recipient clicks on the link it will take him or her to a malicious Web site that displays a Valentine greeting and then attempt to load a ‘valentine.exe’ file to the computer.
The state’s security software, Websense, is blocking the malicious sites that have been reported and is being updated as new sites are identified.
Anyone who receives an e-mail from unknown senders that appears to be a Valentine greeting is warned against opening the message, any attachments or embedded links. The subject line of suspicious e-mail messages may contain:
Or any other e-mail that appears to be a romantic greeting or related to Valentine’s Day.
Some minor delays in processing inbound e-mails may occur as a result of the quarantine efforts. Please report any suspicious e-mail matching the above description and delete the incoming message without opening it.
If you are unsure, contact the cyber security office or the help desk. Do not forward the e-mail unless formally requested to do so. If you have questions or concerns, contact Forrest Anderson, Cyber Security Office, or write firstname.lastname@example.org