funsec mailing list archives

spam kit dissected [publicly]

From: Gadi Evron <ge () linuxbox org>
Date: Fri, 30 Oct 2009 03:33:30 +0200

Careless spammer reveals tricks of the trade
http://www.net-security.org/secworld.php?id=8453

-----
I guess it had to happen sooner or later. After looking at who knows how
many spam-and-scam examples, Patrick Fitzgerald of Symantec has struck
gold while investigating the latest malware campaigns he was alerted to.

The campaign in question is simple enough: forum visitors and Twitter
users are offered to download an application that supposedly generates
invites for Google Wave. When the user follows the link, he is
redirected to a page that contains the wanted file
(googlewaveinvitegenerator.exe) - which, of course, is not what it
should be, but the malicious payload Backdoor.Tidserv.

And what's the difference between this and other similar scam?
-----


-- 
Gadi Evron,
ge () linuxbox org.

Blog: http://gevron.livejournal.com/

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Current thread:

spam kit dissected [publicly] Gadi Evron (Oct 29)