It seems Imageshack with malicious or at least abusive Flash files is getting more popular. We saw a similar attack, yet far less malicious, on Facebook last week. User's walls were spammed with a messae about someone having a crush on them with a link to an Imageshack flash file. The file then did a full redirect to a dating website. The bad guys are both simply just using them as a jumping point and in some cases playing off of their [somewhat] trusted name.
Steven On Thu, 28 Aug 2008 09:18:12 -0400, "Discini, Sonny" <[EMAIL PROTECTED]> wrote: > Here is another XP/Vista download link: > > ht tp://img 182.imageshack.us/img182/7145/47024671do7 .swf > > -- > Steve > > > > I had a bunch of that come through in 3 separate waves yesterday. > > The malware download pointed to: > Hxxp://89.187.49.18/install.exe > > Note that the payload is known to Sophos so I'm assuming that most of > the other big players also pick it up. Nothing new. > > Sonny > > Sonny Discini, Senior Network Security Engineer > Office of the CIO > Department of Technology Services > Montgomery County Government > > > > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of Steve Pirk > Sent: Thursday, August 28, 2008 7:13 AM > To: [EMAIL PROTECTED] > Cc: Botnets > Subject: Re: [phishing] XP update phish/malware > > > Equal bytes for women. > > On Wed, 27 Aug 2008, Steve Pirk wrote: > >> Here are some links related to a XP update phish/malware download. >> >> Image or payload? >> ht tp://img 504.imageshack.us/img504/6262/23031231ob0 .swf >> >> That was the only link in the email. >> -- >> Steve >> Equal bytes for women. _______________________________________________ >> phishing mailing list >> [EMAIL PROTECTED] >> http://www.whitestar.linuxbox.org/mailman/listinfo/phishing >> > _______________________________________________ > phishing mailing list > [EMAIL PROTECTED] > http://www.whitestar.linuxbox.org/mailman/listinfo/phishing > _______________________________________________ > botnets@, the public's dumping ground for maliciousness > All list and server information are public and available to law > enforcement upon request. > http://www.whitestar.linuxbox.org/mailman/listinfo/botnets _______________________________________________ botnets@, the public's dumping ground for maliciousness All list and server information are public and available to law enforcement upon request. http://www.whitestar.linuxbox.org/mailman/listinfo/botnets