Friday, July 30, 2010
Register  Login
  Our sponsors   
  Users currently online   
Membership Membership:
Latest New User Latest: SullyC
New Today New Today: 0
New Yesterday New Yesterday: 0
User Count Overall: 53
People Online People Online:
Visitors Visitors: 5
Members Members: 0
Total Total: 5
Online Now Online Now:
Click here to visit OS-Cubed, Inc.
Viruswarn banner
you are here: Forums  Search

Welcome to the Viruswarning forums.  All your original content has been ported to the new forums as  well as new content and additional opportunities to interact with the authors of Viruswarn.com.  You can always access old content at www.leedrake.com/forum .  You may find some formatting was lost in the conversion and the older versions of the posts to be more readable....

But at least it's all here.

Enjoy!
  Viruswarn Forums
Forums > Viruswarning Forum > Viruswarning archive
Subject: New Social Engineering Tactic Being Employed to Spread Malicious Code

You are not authorized to post a reply.   
Author Messages
David Gray
Posts:17
01/20/2007 2:12 AM  
What Is It?

The Bad Guys have devised a cunning new bit of social engineering to convince unsuspecting users to open their messages and let their malicious software install itself onto your computer. The tactic is to give the message a subject that looks like the message is about a breaking news story that the sender hopes you will want to read.

I first read about the "Storm worm" yesterday on eWeek, a well regarded electronic newspaper that caters to the IT industry.

Since reading the news article, I've seen two such suspicious messages in my own Inbox.

  • Russian missle shot down Chinese aircraft
  • Russian missle shot down Chinese satellite

Note that the word "missile" is misspelled.

One of the two contained an attachment, obviously a payload of some sort. Although the other showed no obvious signs of containing a payload, I took no chances and deleted it, too. Although I cannot confirm this, and have no intention of risking a test, I suspect that both of the above messages are variants of the message reported by F-Secure at http://www.f-secure.com/v-descs/small_dam.shtml.

What Should You Do?

Beware of messages from unknown senders that appear to be about breaking news stories. If you run with the preview pane disabled, as I do, you can safely delete the message.

As a rule of thumb, if anything about a message looks suspicious, don't open it. Instead, toss it into your Deleted Items folder and let the message archiving feature of your mail program dispose of it.

References
David Gray, MBA, Chief Wizard
WizardWrx, formerly P6 Consulting
WizardWrx Logo V: +1 (817) 812-3041
TZ: USA Central, GMT -6
E: dagray@wizardwrx.com
W: www.wizardwrx.com
 5006 Cloyce Court
North Richland Hills, TX 76180-6944
USA		 20 Years of Experience & Independence - 1985-2005
Tell me what you need, and I’ll conjure it.
 
You are not authorized to post a reply.
Forums > Viruswarning Forum > Viruswarning archive > New Social Engineering Tactic Being Employed to Spread Malicious Code


ActiveForums 3.6
  Register or Login


Forgot Password ?
Copyright 2006 by OS-Cubed, Inc.   Terms Of Use  Privacy Statement