There are various phishing scams and now even a virus that centers on this tragic situation. This is the darker side of the security profession and hopefully not too many folks will be impacted by these new virus Zar.A worm - Pretends to be Tsunami Relief Donation Formhttp://vil.nai.com/vil/content/v_130860.htmhttp://www.f-secure.com/v-descs/zar_a.shtmlhttp://firstname.lastname@example.org://www.trendmicro.com/vinfo/virusencyc...Name=WORM_ZAR.Ahttp://secunia.com/virus_information/3249/zar.a/
WORM_ZAR.A propagates via email using its own Messaging Application Programming Interface (MAPI) engine. It uses email addresses gathered from Microsoft Outlook as its recepients. This worm also has the ability to perform a distributed denial of service attack on a Web site. This Visual Basic-compiled worm runs on all Windows platforms (95, 98, ME, NT, 2000, and XP). The format of email messages are:Subject:
Tsunami Donation! Please help!Body:
Please help us with your donation and view the attachment below! We need you! Attachment:
tsunami.exeI would still encourage folks to give to this very worthy cause, but to also be careful in the process, as noted by another example below:F-Secure notes a fake Red Cross site was taken offline http://www.f-secure.com/weblog/
Edited by harrywaldron, 18 January 2005 - 08:48 PM.