Log in

No account? Create an account
10 July 2007 @ 11:15 am
The latest hacker tactics  
Passing on this alert from a local ISP:

The latest virus bedeviling the Internet promises you a postcard from
a "friend" or "family member." If you click on the "postcard" link,
a script will attempt to install a spam-creating bot on your computer.
The description of how it works reads like a big budget sci-fi thriller:

"Antivirus vendors had tentatively pegged the executable
malware as a variation of the Storm Trojan, an aggressive
piece of malware that has been hijacking computers to serve
as attacker bots since early this year. Computers already
compromised by Storm -- a.k.a. Peacom -- are hosting the
malware, and the attackers are rotating those machines' IP
addresses in the spam they're sending."

This is the tactic hackers are using now that we've learned to be wary of attachments. Don't click on a link from any unknown source!

I was already wary when I first saw these and looked carefully at them. They just didn't seem legit to me. If you think you are getting an e-card of some kind, ask around if someone sent it before you trust it.
axolotl9: 1994axolotl9 on July 11th, 2007 02:50 am (UTC)
easy way to tell
1) Real e-cards will have a name associated with them, not just "Friend" or "Family Member" or "Co-Worker" (just three examples that I've personally seen - Macs don't speak the bot's language, though. At least real Macs don't - I don't know about Intel Macs.)

2) Real e-cards have a defined URL like this:

whereas the Trojan URLs look more like this:
Tapatitapati on July 11th, 2007 07:05 pm (UTC)
Re: easy way to tell
Yes, those were things that made me suspicious even before I saw the alert, so fortunately I didn't fall for it.

Macs are wonderful, aren't they!
teacup52teacup52 on July 11th, 2007 02:58 am (UTC)
Thanks for the warning.

I was sent an e-card for America, and was undecided whether or not to open it. I had 2 U.S. exchange students in my course this last semester and thought that it may have been from one of them. However, when I e-mailed them their results they made no mention of an e-card, so I assumed that it was junk. I didn't think about it being a virus!.

Tapatitapati on July 11th, 2007 07:06 pm (UTC)
Re: thanks
Yes, a lot of junk mail with links now are viruses, since they've caught on to the fact that most of us won't open an attachment.