funsec mailing list archives
spam kit dissected [publicly]
From: Gadi Evron <ge () linuxbox org>
Date: Fri, 30 Oct 2009 03:33:30 +0200
Careless spammer reveals tricks of the trade http://www.net-security.org/secworld.php?id=8453 ----- I guess it had to happen sooner or later. After looking at who knows how many spam-and-scam examples, Patrick Fitzgerald of Symantec has struck gold while investigating the latest malware campaigns he was alerted to. The campaign in question is simple enough: forum visitors and Twitter users are offered to download an application that supposedly generates invites for Google Wave. When the user follows the link, he is redirected to a page that contains the wanted file (googlewaveinvitegenerator.exe) - which, of course, is not what it should be, but the malicious payload Backdoor.Tidserv. And what's the difference between this and other similar scam? ----- -- Gadi Evron, ge () linuxbox org. Blog: http://gevron.livejournal.com/ _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Current thread:
- spam kit dissected [publicly] Gadi Evron (Oct 29)