Another trojan using WMF exploit in SPAM



F-Secure is reporting on another SPAM attack that tries to get people to click on a link to a site with an exploit-crafted WMF file. The message is along the lines of a claimed Professor at Yale announcing the unfortunate vandalism over the New Year holiday, the link purports to be pictures of the act in the “hope that someone may recognize the culprits work”. I’m sure this won’t be the last of that sort….


Administrators: you might want to block these at your gateways:
http access to playtimepiano[dot]home[dot]comcast[dot]net (do not visit this site)
tftp (ie. UDP) access to 86.135.149.130
IRC access to 140.198.35.85:8080
IRC access to 24.116.12.59:8080
IRC access to 140.198.165.185:8080
IRC access to 129.93.51.80:8080
IRC access to 70.136.88.76:8080

Related Posts

Blog Traffic Exchange Related Posts
  • Network security - how safe is your network? Looking at ARP A while back I did a network security series and one of the points that I mentioned was that it's important to know what is normal for your network. In other words, what machines are NORMALLY connected, what services are normally running, etc. Well, I'm about to start a serious......
  • Rootscan.info? More Rogue Security Software on the horizon? To follow up the last post about watching google hot trends.... I noticed an unusual search in the trends for rootscan.info. It currently seems to redirect to a site talking about rogue antivirus removal so it might not be anything, but the related searches for virus doctor, virus doctor removal,......
  • Clamav 0.88.2 for Mandrake 10.0 rpms Since I have a few old Mandrake 10.0 servers out there churning along, I've rebuilt the Clamav package to reflect the recent security fix version 0.88.2 is up on the site at http://www.averyjparker.com/wp-content/downloads/clamav882/ As always, the rpms are here more for my convenience than anything else, rebuilt straight from the......
Blog Traffic Exchange Related Websites
  • How Online Reputation Management Can Save Your Brand Online Reputation Management takes time and energy. With the internet being more and more integrated into our daily lives, there really isn't a corner of the internet that a business or individual should not worry about their name being slandered in. Typical areas businesses and individuals alike can expect to......
  • The Natural Progression Of Your Network Marketing Business [/caption] All of us ultimately starts in the same place when we start a network marketing business. Just recently I was talking to one of my friends who also happens to be in one of my downlines. He said that his wife was teasing him telling him he didn't......
  • New Loan Funded — Finance for an ESTABLISHED Business — $25,000 at 24% — B Credit — DTI 1392557% A new loan funded (Finance for an ESTABLISHED Business – $25,000 at 24%).  I participated via a manual bid the loan was Autofunding.  The borrower had B credit and a 1392557% DTI (unverifiable income).  As a reminder my standing orders (and manual bids) only find loans with 0 current delinquencies, 10 or less delinquencies......
PDF24    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site