Earlier today the MSNBC spam campaign currently in circulation morphed and the page that users are directed to has been replaced with an MSN branded web page (earlier this morning it pointed to the CNN fake video codec page). The page operates and behaves similar to the CNN fake flash codec in which it prompts visitors to install an updated ActiveX control.
The adobe_flash.exe is identified as Trj/Exchanger.Z and a detection and removal signature for Panda Security customers is now available.
It appears the spam gang behind the CNN alerts attack is also behind the MSNBC attack that emerged early this morning. Additional details on this attack can be found here:
August 14, 2008 at 9:49 am
They are real jokers: http://didierstevens.wordpress.com/2008/08/13/fake-msnbc-breaking-news-or-fake-cnn-custom-alert-make-up-your-mind/