Dangerous e-postcards

Filed under on August 16, 2007

My university's central computing group just sent out this warning:

A new type of dangerous email is arriving at the UW in large and increasing numbers. Email messages that say "a postcard is waiting for you, just click here," or something similar, are trying to entice you to visit a Web site capable of attacking your computer.

DO NOT CLICK ON ANY LINKS OR GO TO ANY WEB ADDRESSES IN SUCH MESSAGES!

If you do so, your computer is likely to be attacked by sophisticated programs designed to search for weaknesses in your computer's configuration and use them (if found) to inject viruses or bot programs into your computer.

Simply visiting the Web page will cause an attack, even without clicking on anything in the page.

Although up-to-date, well-maintained computers with current anti-virus software are less vulnerable, even they might be infected by such sites.

Because they are simple text, these messages are difficult for anti-virus and anti-spam programs to identify and filter out.

For more information about these emails, please see the following Web page:

http://www.washington.edu/computing/news/postcard_phish.html

I don't envy the task of educating 40,000 users about computer security, and having received these fake e-postcards myself I know it's an actual attack vector for malware. But what's interesting is the way that the urban legend/misinformation of 2000 (just visiting a site can infect your computer!) becomes the reality of 2007.

From the linked FAQ:

How can I tell if a postcard message is good or bad?
You should be suspicious of ANY email message containing WEB addresses! Anything about the message (wording, colors, graphics, logos, etc.) can be faked. That said, if the message is expected and is like legitimate messages you have received before, it MAY be legitimate.

How long till "DO NOT CLICK ON ANY LINKS OR GO TO ANY WEB ADDRESSES" just in general?

Permalink Comments Comments (0)Trackbacks TrackBacks (0)

Leave a comment

0 TrackBacks

Listed below are links to blogs that reference this entry: Dangerous e-postcards.

TrackBack URL for this entry: http://www.thegogglesdonothing.com/mt/mt-tb.cgi/477

Bio

Peter Leonard
Fulbright Fellow & Guest Researcher at Uppsala University's Centre for Multiethnic Research.

Graduate student in Swedish Literature at the University of Washington.

During Spring 2007, I was an exchange student in Nordic Literature at the University of Copenhagen as a Scan|Design Fellow, where I also interned at Museum Tusculanums Forlag, the University Press.

Böcker

Reklam

About this Entry

This page was published on August 16, 2007.

iPhone Abroad was the previous entry in this blog.

Nokia N75 Firmware is the next entry in this blog.

Find recent content on the main index or look in the archives to find all content.

Recent Pictures on flickr

Deductable Junkets

1992
1994
1995
1998
1999
2000
2001
2002
2003
2004
2005
2006
2007
2008

Search