Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

New Storm Tactic: Kitty Greeting Card


  • Please log in to reply
2 replies to this topic

#1 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,140 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:04:54 PM

Posted 12 October 2007 - 09:29 AM

websense.com/securitylabs

See link for sample email text and screenshot.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

BC AdBot (Login to Remove)

 


#2 harrywaldron

harrywaldron

    Security Reporter


  • Members
  • 509 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Roanoke, Virginia
  • Local time:04:54 PM

Posted 12 October 2007 - 10:00 AM

^ Thanks QM ... additional links below ...

New Storm Worm - Kitty Greeting Card

This new HTML based attack is socially engineered well and may trick folks. It's always a best practice to avoid every URL present in an email message (even to opt out of spam), unless you are absolutely sure it's safe.

New Storm Worm - Kitty Greeting Card
http://www.websense.com/securitylabs/alert...php?AlertID=807
http://www.f-secure.com/weblog/archives/00001291.html
http://www.avertlabs.com/research/blog/ind...killed-the-cat/

Websense® Security Labs™ has received several reports of a new Web site that is being distributed in spam sent out by those running the Storm attacks. This site poses as a free Ecard Web site. No exploit is on the site itself. However, when users click any of the URLs, they are prompted to download and run a file called "SuperLaugh.exe." This file contains the Storm payload code.



#3 harrywaldron

harrywaldron

    Security Reporter


  • Members
  • 509 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Roanoke, Virginia
  • Local time:04:54 PM

Posted 12 October 2007 - 01:32 PM

below a sample from my in-box with the malicious URL removed ... This one is out there :thumbsup:

Date:	Fri, 12 Oct 2007 11:51:12 -0400 
From:	*** EMAIL ADDRESS REMOVED ***  
To:	  HARRY 
Subject: You won't believe this greeting! 
	
Click here to view your laughing kitty card online. 

*** MALICIOUS URL REMOVED ***





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users