Wikipedia - an email phishing based attack

Posted Wednesday, November 08, 2006 9:38 PM by hwaldron

As a follow-up to Donna's great post.  You can never trust unsolicited email messages either.

F-Secure: Case Wikipedia
http://www.f-secure.com/weblog/archives/archive-112006.html#00001015

QUOTE: Some clown is mailing around German language e-mails with the following content: <phish-based-HTML> ... If you follow the links in the e-mail, you'll end up on a Wikipedia lookalike page ...  Interestingly, the download (which we block as Trojan-Dropper.Win32.Small.atq) actually installs the original patch from Microsoft (e.g., Blaster protection based on MS03-011) - and then drops a trojan.  Nice.   The rogue domain <<url-removed>> has nothing to do with real Wikipedia. However, it has been registered with exactly the same registration information as the real wikipedia.org domain

Comments

# myITforum Daily Newsletter; November 09, 2006

Thursday, November 09, 2006 8:56 AM by myITforum Newsletters

myITforum Daily Newsletter Daily Newsletter November 9, 2006 The myITforum.com newsletter is delivered