Trojans and viruses are out to get you
Have you received your virus-infected e-mail yet today? I don't know what's up, but in the last week I've received dozens of e-mails with a virus infected attachment or a link to a backdoor Trojan horse. There are three variations and all have one thing in mind--luring me into getting zapped with a nasty payload.
The first has a link to an authentic-looking CNN alert. Click the link (no, don't!--I was speaking metaphorically) and you'll land on a malware-hosting site that attempts to download a malicious executable onto your PC. Read "Fake CNN Alert Still Spreading Malware" for details.
I've also received a smattering of e-mails created by clueless cretins, dopes who haven't taken the time to run a spell checker on their even dopier messages. One tells me my FedEx package hasn't been delivered and asks me to click on the attached zipped Trojan horse to print the invoice. What caught my eye was the tracking number in the subject line, and I worry that some of you might not pay attention to the message and click the link.
But the most malevolent of the bunch has a "click to watch the video" link that purportedly leads to MSNBC's site, but actually sweeps you to a malware site that insists you need to update Flash in order to watch the video. Too many people probably do need to update their Flash applet, so this fool thing is a real temptation. But click "adobe_flash.exe" and you'll get nailed by the EncPk-DA Trojan. You can get a full explanation of the depth and breadth of this exploit in "Fake News Bulletin Spreads Malware."
Sign up for ITworld's Daily newsletter
Follow ITworld on Twitter @IT_world
On Twitter now
malware
Powered by TwitterOn Twitter now
malware
Brian Proffitt
Microsoft/Novell: Breaking Down the Coupon Numbers
Esther Schindler
Drupal's Dries Buytaert on Building the Next Drupal
Tom Henderson
Top Ten General Operating Systems Rants
pasmith
PS3 motion controller delayed; goes up against Project Natal
sjvn
Neolithic Windows security hole alive and well in Windows 7
claird
Perl source code comparison makes for good reading
mikelgan
Cell phones don't create stress or interrupt much
Sandra Henry-Stocker
How to: The Unix Interview
Where Google Chrome security fails: the password
I heard mention that the Chrome OS will have some sort of encryption available a la bitlocker. If it's possible to encrypt personal data using another password or key, then it may have potential for very secure data.... And Ubuntu has an 'encrypt home directory' option, perhaps google should follow suit.
- Dann
Join the conversation here
Quick, practical advice for IT pros. Made fresh daily.
- Ubuntu advances: Why Ubuntu server installations will surge in 2010
- Social media marketing: How to make friends with benefits
- More...
Want to cash in on your IT savvy? Send your tip to tips@itworld.com. If we post it, we'll send you a $25 Amazon e-gift card.
