[Discuss] email virus
Jerry Feldman
gaf at blu.org
Wed Jan 11 09:25:08 EST 2012
Do you know the name of the virus in the Symantec, Kaspersky, MAffee or
other A/V databases? I'd like to look it up.
On 01/11/2012 08:31 AM, markw at mohawksoft.com wrote:
> I won't post it, because I'm not sure who would be vulnerable, but I just
> received this great email virus.
>
> It basically uses google code javascript decryption to deploy the package
> sent as an encrypted text stream. Nice.
>
> How will the mail filters deal with this? Can they? The decrypt is written
> in javascript and comes from the google code url, so it is probably viewed
> by filters as safe. The text stream looks merely like random text with no
> obvious patterns also, your javascript stream gets blacklisted? Change the
> encrypt key, done.
--
Jerry Feldman <gaf at blu.org>
Boston Linux and Unix
PGP key id:3BC1EB90
PGP Key fingerprint: 49E2 C52A FC5A A31F 8D66 C0AF 7CEA 30FC 3BC1 EB90
More information about the Discuss
mailing list