AppRiver's data centers received 10 to 12 times normal traffic. Even though AppRiver managed to block the spam mails, tremendous volume of traffic caused some of its customers delays in sending and receiving emails.
CyberCriminals are targeting users with large amount of emails with varying premise. One of the spam mails is targeting Bank of America customers. A fake alert message pretending to be from Bank of America contains a Bredo malware.
Researchers say the malware is capable of recording the keystrokes and steal financial information. It has also capabilities to do download additional malware on the victim's machine. The spam mails reportedly detected only by 11 out of 51 antiviruses.
Another mail analyzed by AppRiver is pretending to be from "VISA/MasterCard" and informs recipients that their account has been blocked due to unusual activity.
Some of the malicious attached files have pointed to Andromeda botnet and some other pointing to Bredo Botnet. This botnet activity being referred as TidalWave/TidalBotnet by AppRiver.