Haha you opened a file attachment |
|
I just wanted to remind everyone about such vulns. Just today I almost got my identity and all my information stolen. I got an email from I thought paypal, it even said it was from [email protected]. Which really anyone can easily do. It had a file attached (.htm, webpage) and I opened it and it was a form that had official paypal stuff on it. I looked at the source and saw that the form was being submitted NOT to a paypal site, but to a different site(In the "action" attribute). I went to the website minus the w.php at the end of the url so I could view the directory, and sure enough there was a .txt file and I opened it and it had the guy's tests and then a bunch of other people's information (SS#, CC#, Mother's Maiden name, etc.. everything that was in the form). I have already reported it to US-CERT and google. |
|
Haha you opened a file attachment |
|
---------
Lost count of how many lucid dreams I've had
---------
With no harm done, although you know .htm is not an executable, so even if it was suppose to do damage to my computer, it could not, because .htm's or .html's cannot open without the user opening it(unlike autorun files that usually spread onto flash drives..), and all I did was view the source. Even if I did open it, it would not be able to do anything actually to my computer. Now if it was a .bat file or .exe then you'd be doomed.. |
|
I got one from paypal a couple of weeks ago too. Address was very similar, but it says [email protected] or something like that. |
|
I got this e-mail as well, I believe, but just ignored it for an obvious phishing attempt. Good to see that some people also try protecting others. |
|
April Ryan is my friend,
Every sorrow she can mend.
When i visit her dark realm,
Does it simply overwhelm.
Bookmarks