A spam campaign is the starting point for a Blackhole-Cridex malware attack.
It all starts with an email entitled “Re:Fwd: Order 321312” which reads: Welcome, You can download your Microsoft Windows License here. Microsoft Corporation,” said researchers at security company GFI Labs.
Microsoft has nothing to do with the emails and the emails have nothing to do with Windows licenses.
While the victim is viewing a message that reads “Please wait a moment. You will be forwarded,” in the background, the BlackHole exploit kit is working on trying to find a security hole to push malware onto the victim’s computer.