?

Log in

No account? Create an account
 
 
10 July 2007 @ 11:15 am
The latest hacker tactics  
Passing on this alert from a local ISP:

The latest virus bedeviling the Internet promises you a postcard from
a "friend" or "family member." If you click on the "postcard" link,
a script will attempt to install a spam-creating bot on your computer.
The description of how it works reads like a big budget sci-fi thriller:

"Antivirus vendors had tentatively pegged the executable
malware as a variation of the Storm Trojan, an aggressive
piece of malware that has been hijacking computers to serve
as attacker bots since early this year. Computers already
compromised by Storm -- a.k.a. Peacom -- are hosting the
malware, and the attackers are rotating those machines' IP
addresses in the spam they're sending."


This is the tactic hackers are using now that we've learned to be wary of attachments. Don't click on a link from any unknown source!

I was already wary when I first saw these and looked carefully at them. They just didn't seem legit to me. If you think you are getting an e-card of some kind, ask around if someone sent it before you trust it.
 
 
 
axolotl9: 1994axolotl9 on July 11th, 2007 02:50 am (UTC)
easy way to tell
1) Real e-cards will have a name associated with them, not just "Friend" or "Family Member" or "Co-Worker" (just three examples that I've personally seen - Macs don't speak the bot's language, though. At least real Macs don't - I don't know about Intel Macs.)

2) Real e-cards have a defined URL like this:
http://www.blue-mountain.com/ecard/314159.html

whereas the Trojan URLs look more like this:
http://www.blue-mountain.com/ecard/dll/8eabc7fd88e8e
Tapatitapati on July 11th, 2007 07:05 pm (UTC)
Re: easy way to tell
Yes, those were things that made me suspicious even before I saw the alert, so fortunately I didn't fall for it.

Macs are wonderful, aren't they!