 
|
|
 |
|
 |
| Home » Publications » AusCERT Web Log » Beware the ides of... February, err... Valentine's Day!
|
| |
 |
 |
 |
|
|
|
|
Date: 29 January 2009
Click here for printable version
Greetings,
With Valentine's Day coming up just around the corner, as in previous years we can all expect an onslaught of Valentine's Day related spam emails to arrive in our e-mail accounts over the course of the next few weeks. Of course, just like in previous years, much of this spam is likely to contain links to sites containing malware or viruses, or malicious e-card attachments.
AusCERT has already been made aware of a number of malicious Valentine's Day spam emails that are already in circulation in other parts of the world. These emails contain a link to a website with several images of hearts, and instruct the user to click on an image. If users click on any of these images, they are then prompted to download a malicious program. These files reportedly have names such as: youandme.exe, onlyyou.exe, you.exe, and meandyou.exe. Please note that these file names could change at any time. [1]
We'd just like to take this opportunity to remind everyone to be careful opening e-mails or the attachments contained within them, and only from people you know and trust. Also you should make sure that you have an up-to-date anti-virus product installed and running at all times.
This past week has seen Computer Associates issue updates for a large number of their products to combat a vulnerability which could allow some malware and viruses to go undetected, as detailed in our (ESB-2009.0094) bulletin.
Further complicating matters relating to the spread of malicious code via USB and other similar removable devices, it appears that Microsoft Windows does not properly disable its autorun feature. A work-around has been devised, and can be found in our (ESB-2009.0076) bulletin.
Regards,
Jonathan
|
|
|
|
 |
|
 |
|
|
|
|
|