|
| | | 
Forum Moderator
 
Group: Moderators
Last Login: 8/8/2008 6:28 AM
Posts: 2,777, Visits: 7,025 |
| Websense® Security Labs™ has received reports of a new attack that targets AOL customers. Users receive a spoofed email from the security department at AOL. The email claims that AOL had a security breach over the weekend and that confidential information may have been compromised. The email also requests that users connect to a website to download and install a new security patch, which will protect their information. When users click on the link, they are redirected to a fraudulent website which is hosted in Scotland. This site hosts a piece of malicious code, named patch.scr, which is written in Visual Basic and uses Yoda Crypt. When the file is run, a wizard opens to guide users through the disclosure of their confidential account and billing information, including their account limit. Once this information is obtained, it is sent in a text file via FTP to an account at a hosting facility.
Full report and email snapshot here.
__________________________________________
"THE BAD GUYS DON'T NEED A SEARCH WARRANT. ARE YOU PROTECTED?"
Microsoft MVP - Windows Security  |
| |
| | | 
Senior Forum Moderator
Group: Moderators
Last Login: 8/9/2008 10:14 AM
Posts: 29,030, Visits: 54,734 |
| | |
| | |
Forum Moderator
Group: Moderators
Last Login: 8/8/2008 6:28 AM
Posts: 2,777, Visits: 7,025 |
| Well Richie your not alone. I use it too but have removed most of the crap it came bundled with including their anti-spyware/spy zapper stuff.
__________________________________________
"THE BAD GUYS DON'T NEED A SEARCH WARRANT. ARE YOU PROTECTED?"
Microsoft MVP - Windows Security |
| |
| | |
Senior Forum Moderator
Group: Moderators
Last Login: 8/9/2008 10:14 AM
Posts: 29,030, Visits: 54,734 |
| | |
|
|
