Malware (Was: Re: (no subject))
George Toft
george at georgetoft.com
Thu Sep 21 22:50:41 MST 2006
One of my clients got an email to them from them and it had an .exe
attachment. Fortunately, they called me before opening it. Same deal,
though.
George Toft, CISSP, MSIS
My IT Department
www.myITaz.com
480-544-1067
Confidential data protection experts for the financial industry.
Alan Dayley wrote:
> These are bogus. It is the latest phishing/infection/malware incarnation
> to get people to run attachments.
>
> I got one this morning from "service at consultpros.com" with an attached EXE
> file. consultpros.com is my domain name and I did not send it to myself!
> Mike's "txt" file is probably a renamed EXE of the same ilk which Windows
> would happily execute if opened.
>
> Don't open any unexpected attachments from anyone! Period! Exclamation
> point! This hold true for Linux users too!
>
> I feel sorry for the many uneducated Windows users who will fall for this
> trick.
>
> Alan
>
> On Wed, September 20, 2006 9:55 am, Nathan England wrote:
>
>>My first reaction is, if it is real, they are going to be able to provide
>>some
>>form of proof, and by sending me an email with a reply address of
>>'noreply'
>>makes me believe it is fake. If it was serious, it would be 'support' or
>>something credible where you could reply to it and ask questions.
>>
>>Then again, we are talking about Cox, who are known for their excellent
>>tech
>>support, right?> lol
>>
>>On Wednesday 20 September 2006 09:45, bmike101 at cox.net wrote:
>>
>>> I got an email today. Please read and let me know what you think. I
>>>think
>>>it is not whom it purports to be because the attachment is not titled
>>>appropriately. I wouldn't have opened it anyways but just the same!
>>>
>>> From: MAILER-DAEMON <noreply at cox.net>
>>>
>>> Date: Thursday, September 7, 2006 1:18 PM
>>>
>>> To: bmike101 at cox.net
>>>
>>> Subject: bmike101 at cox.net
>>>
>>> Size: 2 KB
>>>
>>> Attachments: Deleted0.txt (0.2 KB)
>>>
>>>Dear user of cox.net,
>>>
>>>Your email account was used to send a huge amount of junk email during
>>>the
>>>last week.
>>>Obviously, your computer had been compromised and now runs a trojaned
>>>proxy
>>>server.
>>>
>>>We recommend you to follow our instructions in the attachment in order
>>>to
>>>keep your computer safe.
>>>
>>>Have a nice day,
>>>The cox.net support team.
>>>
>>>
>>>Open Attachment Deleted0.txt
>>>
>>>
>>>
>>>
>>>---------------------------------------------------
>>>PLUG-discuss mailing list - PLUG-discuss at lists.plug.phoenix.az.us
>>>To subscribe, unsubscribe, or to change you mail settings:
>>>http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
>>
>>--
>>~~~~~~~~~~~~~~~~~~
>>Nathan England
>>PaysonLinux User Group
>>nathan at paysonlinux.org
>>http://www.paysonlinux.org/
>>
>>Software Development
>>Website Development
>>Linux Administration
>>---------------------------------------------------
>>PLUG-discuss mailing list - PLUG-discuss at lists.plug.phoenix.az.us
>>To subscribe, unsubscribe, or to change you mail settings:
>>http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
>>
>
>
>
> ---------------------------------------------------
> PLUG-discuss mailing list - PLUG-discuss at lists.plug.phoenix.az.us
> To subscribe, unsubscribe, or to change you mail settings:
> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
>
>
More information about the PLUG-discuss
mailing list