Outlook doesn't necessarily allow code to be executed per se, but rendering a jpeg with the URL http://[EMAIL PROTECTED] can be more than sufficient to confirm an e-mail address as being 'live'. Slipstick has a script to convert HTML mail to plain text in Outlook, and Outlook 2003 allows one to prevent the rendering of non-local content in an HTML message I believe.
On 3/20/03 9:22, "RBHATIA" <[EMAIL PROTECTED]> wrote: > Hi, > As I try to battle the tons of spam related email my organization receives > everyday, I am amazed at the increasing number of emails targetting our > organization despite the fact that we do have a filtering technology in > place. Which brings me to the question - are we doing something to invite > these emails ? > I came across an article by Brian Livingstone recently about spam and how > certain tactics can invite spammers to your organization. I quote a > statement from his article relating to the results of an experiment they > carried out at some law firm - "They found that 83 percent of the spam being > received contained a coded "tracking" image. When the image was downloaded > to be displayed in the message, it alerted the senders that a message sent > to a specific address had been viewed. This is now the most prevalent > mechanism by which spammers find "live" accounts, in my opinion." > Is this possible in Outlook ? The article said something about with the > Preview pane being turned on in Outlook, this was more likely to happen or > just opening an email with this sort of an image in it could also trigger > the code. How can this happen ? This means Outlook is allowing some code to > get executed that passes information back to the source. Isn't there a > security patch to prevent this from happening ? > RB > > _________________________________________________________________ > List posting FAQ: http://www.swinc.com/resource/exch_faq.htm > Archives: http://www.swynk.com/sitesearch/search.asp > To unsubscribe: mailto:[EMAIL PROTECTED] > Exchange List admin: [EMAIL PROTECTED] > _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED]
