[ubuntu-florida] Malicious Code / Malicious Website: Information stealing code disguised as "videos"
ElementC
wer4geeks at gmail.com
Fri Feb 22 01:24:59 GMT 2008
This comes down to a simple breach of trust. If a user is stupid enough to
be downloading programs from an unknown, shady site (IE ones with many
banner ads, ads for 18+ sites, etc.) WHILE ACCESSING PERSONAL EMAIL at a
government owned, government maintained workstation, especially one that you
click an "I agree" after scrolling through a large box, and are required to
fill out an "Internet Safety and Acceptable Use Agreement", perhaps they
shouldn't be using the vulnerable Windows workstations in the first place.
The fact that someone within the school board forwarded this to me, only a
student, speaks volumes about the IT security within local schools.
(I hope you list subscribers don't mind that I forwarded this to you; I
haven't seen too much traffic lately and CatsCEO and thought this would be
a good insight into local affairs in our industry. The standard workstation
that is at risk is a winXP pro IBM core2 duo w/ 2 gigs RAM, 80 gigs HD, IE
7, Office 2003 Pro, Outlook 2007, and extremely locked down, logged, and
individualized user accounts on an AD Domain.)
Folks,
>
> Please read the information below concerning malicious code in emails
> and web sites found recently. This could be useful to your staff here
> at work and at home.
>
> Forward as you deem necessary for your school.
>
> Thanks,
>
> (Name Removed)
>
> -----Original Message-----
> From: Websense Security Labs
> Sent: Wednesday, February 20, 2008 5:47 PM
> To: (Name Removed)@Network Operations
> Subject: Malicious Code / Malicious Website: Information stealing code
> disguised as "videos"
>
> Websense Security Labs(TM) has discovered a run of spam emails that
> attempt to dupe users into downloading and installing a video of the
> solar eclipse. We have also seen similar blocks of spam purporting to
> contain videos of movie stars, singers, and other entertainers.
>
> Sample subject lines include:
>
> Lunar Eclipse Video
> Your guide to the total lunar eclipse.
> Shocking video with Total moon eclipse
> Total Moon Eclipse Video on NASA TV
> Moon Eclipse is visible today
>
> If users access any of the various Web sites hosting the malicious code,
> and attempt to view the video, they are infected with an
> information-stealing Trojan Horse. There is no exploit code hosted on
> the sites. Users are prompted to confirm that they want to run the code.
>
>
> For additional details and information on how to detect and prevent this
> type of attack:
> http://www.websensesecuritylabs.com/alerts/alert.php?AlertID=842
>
--
This document is released under a Creative Commons
Attribution-NonCommercial-ShareAlike 3.0 United States license. (
http://creativecommons.org/licenses/by-nc-sa/3.0/us/)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.ubuntu.com/archives/ubuntu-us-fl/attachments/20080221/9da10d43/attachment.htm
More information about the Ubuntu-us-fl
mailing list