A report by the United Kingdom's National Infrastructure Security Co-ordination Center warns of a pattern of ongoing attacks. Key points (none surprising):
• A series of trojanised email attacks are targeting UK Government and companies.
• The attackers’ aim appears to be covert gathering and transmitting of commercially or economically valuable information.
• Trojans are delivered either in email attachments or through links to a website.
• The emails employ social engineering, including use of a spoofed sender address and information relevant to the recipient’s job or interests to entice them into opening the documents.
• Once installed on a user machine, trojans may be used to obtain passwords, scan networks, exfiltrate information and launch further attacks.
• Anti-virus software and firewalls do not give complete protection. Trojans can communicate with the attackers using common ports (e.g HTTP, DNS, SSL) and can be modified to avoid anti-virus detection.