Attack E-mails Use Fake Shipping Confirmation Ruse

Google Translate from English into Chinese (Simplified)

Google Translate from English into French

Google Translate from English into German

Google Translate from English into Italian

Google Translate from English into Japanese

Google Translate from English into Portuguese

Google Translate from English into Russian

Google Translate from English into Spanish

Testing and reviews
- Shareware
- Freeware

Search for software:

DISCLAIMER: Logging other people's keystrokes or breaking into other people's computer without their permission can be considered illegal by the courts of many countries. The monitoring software reviewed here is ONLY for authorized system administrators and/or owners of computers. We assume no liability and are not responsible for any misuse or damage caused by the keylogging software. The end user of this software is obliged to obey all applicable local, state, federal and other laws in his country of residence.

September 17th, 2009

Attack E-mails Use Fake Shipping Confirmation Ruse

A triple-payload e-mail attack that uses a fake shipping confirmation notice with a supposed attached label is making the rounds, according to Webroot.

A write-up from the company describes a social engineering ruse designed to nail someone who wasn't paying close attention, with a .zip file attachment that contains an executable disguised with an Excel file icon. The text of the e-mail tells the recipient to open the attachment to print a shipping label (one big clue that this is a scam).

Andrew Brandt makes the good point that changing the default Windows behavior to show file extensions can help thwart the common trick of using a fake document icon to disguise an executable file, assuming that the attached file made it through your anti-spam and antivirus programs. You'd have the chance to see that the supposed Excel file ended in .exe.

In XP, as Brandt describes, change that by opening Explorer, clicking Tools up top, and then unchecking "Hide extensions for known file types." In Vista, start with Organize, then choose Folder and Search options. For either Vista or XP, be sure to click the "Apply to Folders" button to apply the change to all folder, not just the one you're looking at.

Another good idea not mentioned in the Webroot post is to upload any even remotely suspicious attachment or download to Virustotal.com for a malware scan (a free uploader utility makes it especially simple). The attachment in this attack jams three different pieces of malware into the .zip file, which makes for good odds that at least some of the antivirus scanning engines used at Virustotal would catch them.

Source: PCWorld

	All news for September 18th, 2009:
	20:13	Microsoft Internet Explorer SSL security hole lingers
	20:11	Conservatives call for DNA databases to be reduced
	20:09	McAfee warns of bogus security suite
	20:08	Security market remains buoyant in choppy waters
	20:07	The good and bad of government in the cloud
	20:05	Vista, Windows 7 Are More Secure than Snow Leopard
	20:04	Will Google's Buy of reCAPTCHA Hurt Internet Security?
	20:01	HHS guts health-care breach notification law, groups warn
	20:00	Man gets 15 months for E-Trade skimming scam
	19:59	Sophisticated botnet causing a surge in click fraud
	19:59	Microsoft sues scareware scammers
	19:58	Software company fined for trading with the enemy
	19:58	Misdirected spyware infects Ohio hospital
	19:57	Firefox's Flash check drives 10M to Adobe's download
	19:55	Microsoft, Yahoo in informal talks with EU over search deal
	All news for September 17th, 2009:
	19:59	Wireless Intrusion Detection and Prevention Systems: Selection Criteria
	19:58	How to Compare and Use Wireless Intrusion Detection and Prevention Systems
	19:54	Social Networking a Tool for More Secure ID Management?
	19:52	1.8 million UK postcodes available online
	19:51	Batman 'glide' disabled in anti-piracy measure
	19:47	Study: eBay, Yahoo among most trusted companies
	19:45	One in eight Brits hit by identity theft
	19:44	Attack E-mails Use Fake Shipping Confirmation Ruse
	19:44	An Amazing Laptop Recovery Story
	19:41	Has Conroy's dept received filter report?
	19:39	Will security concerns darken Google's government cloud?
	19:35	New phishing attack chats up victims
	19:34	Report: Skype founders sue Skype
	19:34	Google buys reCAPTCHA to boost book scanning efforts
	19:33	Microsoft offers tools for secure application development

All news for September, 2009
All news for 2009 year
All news for 2008 year
All news for 2007 year
All news for 2006 year
All news for 2005 year
All news for 2004 year

DONATION: www.Anti-Keylogger.Org and www.Keylogger.Org is an independent research projects supported by a team of enthusiasts. If you find this project useful and would like to help foster its continued development, please consider making a donation.

Thanks in advance for your support!


	March 05th, 2010 The Best Keylogger Review added! more


	September 18th, 2009 Microsoft Internet Explorer SSL security hole lingers more Conservatives call for DNA databases to be reduced more McAfee warns of bogus security suite more Security market remains buoyant in choppy waters more The good and bad of government in the cloud more Vista, Windows 7 Are More Secure than Snow Leopard more Will Google's Buy of reCAPTCHA Hurt Internet Security? more HHS guts health-care breach notification law, groups warn more Man gets 15 months for E-Trade skimming scam more Sophisticated botnet causing a surge in click fraud more Microsoft sues scareware scammers more Software company fined for trading with the enemy more Misdirected spyware infects Ohio hospital more Firefox's Flash check drives 10M to Adobe's download more Microsoft, Yahoo in informal talks with EU over search deal more


We are planning to redesign our site. We would like You to express your opinion in this respect. Would you like to leave the site as it is? What changes would you like to suggest?
	Yes, I like the site as it is.
	It's ok, but some changes are necessary.
	It should be changed completely.

Top

Top