I just received an email claiming to be from [EMAIL PROTECTED] with a Subject called "Hi" (which is commonly used as a title for viruses) and the body just said
"Try this, or nothing! +++ Attachment: No Virus found +++ Bitdefender AntiVirus - www.bitdefender.com" Being suspicious I didn't open the attachment called "game_xxo.zip" which was just 39k in size. Sure enough when I checked the headers they appear to be forged claiming to have been Received: from australian.macusersgroup.org (dialup-153.127.221.203.acc04-stge-pth.comindico.com.au [203.221.127.153]) BY mail.e4me.net.au ([192.168.0.20]) WITH ESMTP (4D WebSTAR V Mail (5.3.4)); Tue, 28 Dec 2004 00:56:56 +1100 The trouble is australian.macusersgroup.org's mail server is not on a dialip account from comindico but hosted by me with a Cable account. This had been faked. Obviously an attempt to try and get around my servers IP Allow/Deny set up. What can be learned from this. Even if an email at first appears to be from trusted parties if you see something that just doesn't seem right then stop what your doing and make some investigations on the headers of your email before opening any attachments. I'm glad I did. My first impulse was to open it assuming someone had sent me some info from the WAMUG list but luckily my brain kicked in before I did something silly. All the best Greg Sharp
