Re: FirstClass installations an exploit target?

[Graham Toal <gtoal () UTPA EDU>]

> -----Original Message-----
> From: James H Moore [mailto:jhmfa () RIT EDU]
> Sent: Tuesday, April 04, 2006 12:30 PM
> To: SECURITY () LISTSERV EDUCAUSE EDU
> Subject: [SECURITY] FirstClass installations an exploit target?
>
> We still use FirstClass in a couple of spots, one of our
> users got the following message:
>
> - - -

> Dear Firstclass Member,
> Your e-mail account was used to send a huge amount of unsolicited spam
> messages during the recent week. If you could please take
> 5-10 minutes out
> of your online experience and confirm the attached document
> so you will

I hope they didn't click on it.  It's a virus.  The "document"
is a .doc.exe file.  The virus adapts to the local environment;
at UTPA it would have said "Dear Utpa Member" for example...