Malicious emails which take advantage of the South Korean capsized ferry have been detected.
According to Trend Micro, emails have been detected which leverage the “Sewol” incident, which carried 476 passengers, with emails supposedly containing a court order notifying the recipient of his/her scheduled court hearing.
These contain a malicious .ZIP file attachment containing a malware detected by Trend Micro as BKDR_KULUOZ.SMAL. Although the email does not talk about the capsized ferry directly, snippets of the news can be seen at the bottom of the email, which is a common technique used by spammers to bypass spam filters.