People, It has come to the attention of Professional Hacker Services that an email is circulating which tries to entice people into clicking on a link in an email, at which point they get sent to a site where a spyware program gets silently installed on their machine.
The email looks like this: --------------------------------------------- SUBJECT: CNN mentioned your business in news story CNN has a news story on their web site and they talk about your company. Is it true what they say? Is the Russian Mob behind it? Here is the address to the story http:[EMAIL PROTECTED]/cnn/newsban k.html?251427 --------------------------------------------- People with a good memory might remember me talking about a forum a week or two back which had a link to a nasty script. Same payload this time by the looks of it, just a different delivery vehicle. I detailed why this link (which hopefully none of you have clicked on!!!) works a long time ago. Briefly, this is why: URLs for websites are usually defined as: http://websiteaddress But they can also be defined with a specific username and password like this: http://user:password@websiteaddress or http://user@websiteaddress (if no password is needed) Thing is that if a website allows anonymous access, like virtually all websites do by design, the username part is ignored. So, with all that put together, what you have is someone directing you to http://langsley.hypermart.net/cnn/newsbank.html?251427. The www.cnn.com%42curren.events231567 is a username which is never needed - it is there to trick you. It appears at the start of the URL, so it looks like you're going to CNN. So, watch out for websites with @ symbols in them. Now that I have probably taught a few dumbasses out there how to trick all y'all, you BETTER be aware! If you have clicked on a link like this in an email recently, feel free to contact me at whatever address this message appears to be sent from. Realize though that you are contacting someone who's time is worth money, so bring a few hundred with you. Advice is free, solutions are not. (Another message for my adversary out there who still thinks ziplip addresses are cool. Get a clue. I'm better than you, and I see every account you try and rob. Do you realize that while you are unsuccessful, I get paid to help the victims. You are making me money you fool. My bartended thanks you) BRYAN --- You are currently subscribed to e-gold-list as: [email protected] To unsubscribe send a blank email to [EMAIL PROTECTED] Use e-gold's Secure Randomized Keyboard (SRK) when accessing your e-gold account(s) via the web and shopping cart interfaces to help thwart keystroke loggers and common viruses.
