[WISPA] New ZBot variant for Outlook
FYI From SANS Newsbytes 6-2-09 --Spam Spreading ZBot Masquerades as Outlook Update (June 22, 2009) Spam masquerading as a Microsoft Outlook security and stability update actually infects computers with ZBot, a Trojan horse program that steals sensitive information. The malware contains a list of financial institution and social networking sites; if users visit any of these sites on infected machines, the malware steals login and credit card information and sends it back to a server controlled by the attacker. Earlier variants of ZBot infected computers through drive-by downloads. http://www.scmagazineus.com/Fake-Microsoft-critical-update-spam-propagating-trojan/article/138823/ WISPA Wants You! Join today! http://signup.wispa.org/ WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/
Re: [WISPA] New ZBot variant for Outlook
Ah. I've been seeing a lot of those. I knew they were malware or some other nonsense. Thanks for sharing. Bleh e-mail is going to die off soon, or usage models of it will switch to white list only. It's getting to be ridiculous. David Hulsebus wrote: FYI From SANS Newsbytes 6-2-09 --Spam Spreading ZBot Masquerades as Outlook Update (June 22, 2009) Spam masquerading as a Microsoft Outlook security and stability update actually infects computers with ZBot, a Trojan horse program that steals sensitive information. The malware contains a list of financial institution and social networking sites; if users visit any of these sites on infected machines, the malware steals login and credit card information and sends it back to a server controlled by the attacker. Earlier variants of ZBot infected computers through drive-by downloads. http://www.scmagazineus.com/Fake-Microsoft-critical-update-spam-propagating-trojan/article/138823/ WISPA Wants You! Join today! http://signup.wispa.org/ WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/ WISPA Wants You! Join today! http://signup.wispa.org/ WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/
Re: [WISPA] New ZBot variant for Outlook
Gmail was all over these. __ Jerry Richardson airCloud Communications -Original Message- From: wireless-boun...@wispa.org [mailto:wireless-boun...@wispa.org] On Behalf Of Charles Wyble Sent: Tuesday, June 23, 2009 1:05 PM To: WISPA General List Subject: Re: [WISPA] New ZBot variant for Outlook Ah. I've been seeing a lot of those. I knew they were malware or some other nonsense. Thanks for sharing. Bleh e-mail is going to die off soon, or usage models of it will switch to white list only. It's getting to be ridiculous. David Hulsebus wrote: FYI From SANS Newsbytes 6-2-09 --Spam Spreading ZBot Masquerades as Outlook Update (June 22, 2009) Spam masquerading as a Microsoft Outlook security and stability update actually infects computers with ZBot, a Trojan horse program that steals sensitive information. The malware contains a list of financial institution and social networking sites; if users visit any of these sites on infected machines, the malware steals login and credit card information and sends it back to a server controlled by the attacker. Earlier variants of ZBot infected computers through drive-by downloads. http://www.scmagazineus.com/Fake-Microsoft-critical-update-spam-propag ating-trojan/article/138823/ -- -- WISPA Wants You! Join today! http://signup.wispa.org/ -- -- WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/ WISPA Wants You! Join today! http://signup.wispa.org/ WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/ WISPA Wants You! Join today! http://signup.wispa.org/ WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/
Re: [WISPA] New ZBot variant for Outlook
Maybe if people did not use Outbreak Express and Internet Exploiter it would not be such a problem. Charles Wyble wrote: Ah. I've been seeing a lot of those. I knew they were malware or some other nonsense. Thanks for sharing. Bleh e-mail is going to die off soon, or usage models of it will switch to white list only. It's getting to be ridiculous. David Hulsebus wrote: FYI From SANS Newsbytes 6-2-09 --Spam Spreading ZBot Masquerades as Outlook Update (June 22, 2009) Spam masquerading as a Microsoft Outlook security and stability update actually infects computers with ZBot, a Trojan horse program that steals sensitive information. The malware contains a list of financial institution and social networking sites; if users visit any of these sites on infected machines, the malware steals login and credit card information and sends it back to a server controlled by the attacker. Earlier variants of ZBot infected computers through drive-by downloads. http://www.scmagazineus.com/Fake-Microsoft-critical-update-spam-propagating-trojan/article/138823/ WISPA Wants You! Join today! http://signup.wispa.org/ WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/ WISPA Wants You! Join today! http://signup.wispa.org/ WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/ WISPA Wants You! Join today! http://signup.wispa.org/ WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/
Re: [WISPA] New ZBot variant for Outlook
In reality if 75% of the world used Firefox those explots would be targeting Firefox :) On 6/23/09, jree...@18-30chat.net jree...@18-30chat.net wrote: Maybe if people did not use Outbreak Express and Internet Exploiter it would not be such a problem. Charles Wyble wrote: Ah. I've been seeing a lot of those. I knew they were malware or some other nonsense. Thanks for sharing. Bleh e-mail is going to die off soon, or usage models of it will switch to white list only. It's getting to be ridiculous. David Hulsebus wrote: FYI From SANS Newsbytes 6-2-09 --Spam Spreading ZBot Masquerades as Outlook Update (June 22, 2009) Spam masquerading as a Microsoft Outlook security and stability update actually infects computers with ZBot, a Trojan horse program that steals sensitive information. The malware contains a list of financial institution and social networking sites; if users visit any of these sites on infected machines, the malware steals login and credit card information and sends it back to a server controlled by the attacker. Earlier variants of ZBot infected computers through drive-by downloads. http://www.scmagazineus.com/Fake-Microsoft-critical-update-spam-propagating-trojan/article/138823/ WISPA Wants You! Join today! http://signup.wispa.org/ WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/ WISPA Wants You! Join today! http://signup.wispa.org/ WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/ WISPA Wants You! Join today! http://signup.wispa.org/ WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/ -- Josh Luthman Office: 937-552-2340 Direct: 937-552-2343 1100 Wayne St Suite 1337 Troy, OH 45373 When you have eliminated the impossible, that which remains, however improbable, must be the truth. --- Sir Arthur Conan Doyle WISPA Wants You! Join today! http://signup.wispa.org/ WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/
Re: [WISPA] New ZBot variant for Outlook
I agree. And we would still see a drastic fall in spam/exploits/malware The FF team does a better job of patching for stuff then MFST does. Im not saying they are perfect by any means, just better. The add-ons for FF that make life so much better, like NoScript, Flash Block, Ad-Block and AdBlockFilterGSet make FF pretty tight. The primary issue with OE/OL/IE is that for the longest time they automatically ran VBScript embedded in email. Now the major issues are known holes that are months old and end users. Josh Luthman wrote: In reality if 75% of the world used Firefox those explots would be targeting Firefox :) On 6/23/09, jree...@18-30chat.net jree...@18-30chat.net wrote: Maybe if people did not use Outbreak Express and Internet Exploiter it would not be such a problem. Charles Wyble wrote: Ah. I've been seeing a lot of those. I knew they were malware or some other nonsense. Thanks for sharing. Bleh e-mail is going to die off soon, or usage models of it will switch to white list only. It's getting to be ridiculous. David Hulsebus wrote: FYI From SANS Newsbytes 6-2-09 --Spam Spreading ZBot Masquerades as Outlook Update (June 22, 2009) Spam masquerading as a Microsoft Outlook security and stability update actually infects computers with ZBot, a Trojan horse program that steals sensitive information. The malware contains a list of financial institution and social networking sites; if users visit any of these sites on infected machines, the malware steals login and credit card information and sends it back to a server controlled by the attacker. Earlier variants of ZBot infected computers through drive-by downloads. http://www.scmagazineus.com/Fake-Microsoft-critical-update-spam-propagating-trojan/article/138823/ WISPA Wants You! Join today! http://signup.wispa.org/ WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/ WISPA Wants You! Join today! http://signup.wispa.org/ WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/ WISPA Wants You! Join today! http://signup.wispa.org/ WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/ WISPA Wants You! Join today! http://signup.wispa.org/ WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/
Re: [WISPA] New ZBot variant for Outlook
I don't think we want to include addons in this as the majority of users don't use any addons at all, or do they? Josh Luthman Office: 937-552-2340 Direct: 937-552-2343 1100 Wayne St Suite 1337 Troy, OH 45373 When you have eliminated the impossible, that which remains, however improbable, must be the truth. --- Sir Arthur Conan Doyle On Tue, Jun 23, 2009 at 5:23 PM, jree...@18-30chat.net jree...@18-30chat.net wrote: I agree. And we would still see a drastic fall in spam/exploits/malware The FF team does a better job of patching for stuff then MFST does. Im not saying they are perfect by any means, just better. The add-ons for FF that make life so much better, like NoScript, Flash Block, Ad-Block and AdBlockFilterGSet make FF pretty tight. The primary issue with OE/OL/IE is that for the longest time they automatically ran VBScript embedded in email. Now the major issues are known holes that are months old and end users. Josh Luthman wrote: In reality if 75% of the world used Firefox those explots would be targeting Firefox :) On 6/23/09, jree...@18-30chat.net jree...@18-30chat.net wrote: Maybe if people did not use Outbreak Express and Internet Exploiter it would not be such a problem. Charles Wyble wrote: Ah. I've been seeing a lot of those. I knew they were malware or some other nonsense. Thanks for sharing. Bleh e-mail is going to die off soon, or usage models of it will switch to white list only. It's getting to be ridiculous. David Hulsebus wrote: FYI From SANS Newsbytes 6-2-09 --Spam Spreading ZBot Masquerades as Outlook Update (June 22, 2009) Spam masquerading as a Microsoft Outlook security and stability update actually infects computers with ZBot, a Trojan horse program that steals sensitive information. The malware contains a list of financial institution and social networking sites; if users visit any of these sites on infected machines, the malware steals login and credit card information and sends it back to a server controlled by the attacker. Earlier variants of ZBot infected computers through drive-by downloads. http://www.scmagazineus.com/Fake-Microsoft-critical-update-spam-propagating-trojan/article/138823/ WISPA Wants You! Join today! http://signup.wispa.org/ WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/ WISPA Wants You! Join today! http://signup.wispa.org/ WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/ WISPA Wants You! Join today! http://signup.wispa.org/ WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/ WISPA Wants You! Join today! http://signup.wispa.org/ WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/ WISPA Wants You! Join today! http://signup.wispa.org/ WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/
Re: [WISPA] New ZBot variant for Outlook
Mine do. I set everyone up with the listed ones. FF is also more secure 'out of the box' Josh Luthman wrote: I don't think we want to include addons in this as the majority of users don't use any addons at all, or do they? Josh Luthman Office: 937-552-2340 Direct: 937-552-2343 1100 Wayne St Suite 1337 Troy, OH 45373 When you have eliminated the impossible, that which remains, however improbable, must be the truth. --- Sir Arthur Conan Doyle On Tue, Jun 23, 2009 at 5:23 PM, jree...@18-30chat.net jree...@18-30chat.net wrote: I agree. And we would still see a drastic fall in spam/exploits/malware The FF team does a better job of patching for stuff then MFST does. Im not saying they are perfect by any means, just better. The add-ons for FF that make life so much better, like NoScript, Flash Block, Ad-Block and AdBlockFilterGSet make FF pretty tight. The primary issue with OE/OL/IE is that for the longest time they automatically ran VBScript embedded in email. Now the major issues are known holes that are months old and end users. Josh Luthman wrote: In reality if 75% of the world used Firefox those explots would be targeting Firefox :) On 6/23/09, jree...@18-30chat.net jree...@18-30chat.net wrote: Maybe if people did not use Outbreak Express and Internet Exploiter it would not be such a problem. Charles Wyble wrote: Ah. I've been seeing a lot of those. I knew they were malware or some other nonsense. Thanks for sharing. Bleh e-mail is going to die off soon, or usage models of it will switch to white list only. It's getting to be ridiculous. David Hulsebus wrote: FYI From SANS Newsbytes 6-2-09 --Spam Spreading ZBot Masquerades as Outlook Update (June 22, 2009) Spam masquerading as a Microsoft Outlook security and stability update actually infects computers with ZBot, a Trojan horse program that steals sensitive information. The malware contains a list of financial institution and social networking sites; if users visit any of these sites on infected machines, the malware steals login and credit card information and sends it back to a server controlled by the attacker. Earlier variants of ZBot infected computers through drive-by downloads. http://www.scmagazineus.com/Fake-Microsoft-critical-update-spam-propagating-trojan/article/138823/ WISPA Wants You! Join today! http://signup.wispa.org/ WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/ WISPA Wants You! Join today! http://signup.wispa.org/ WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/ WISPA Wants You! Join today! http://signup.wispa.org/ WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/ WISPA Wants You! Join today! http://signup.wispa.org/ WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/ WISPA Wants You! Join today! http://signup.wispa.org/ WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/ WISPA Wants You! Join today! http://signup.wispa.org/ WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/
