BLU Discuss list archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Discuss] email virus

Subject: [Discuss] email virus
From: markw at mohawksoft.com (markw at mohawksoft.com)
Date: Wed, 11 Jan 2012 08:31:22 -0500

I won't post it, because I'm not sure who would be vulnerable, but I just
received this great email virus.

It basically uses google code javascript decryption to deploy the package
sent as an encrypted text stream. Nice.

How will the mail filters deal with this? Can they? The decrypt is written
in javascript and comes from the google code url, so it is probably viewed
by filters as safe. The text stream looks merely like random text with no
obvious patterns also, your javascript stream gets blacklisted? Change the
encrypt key, done.

Follow-Ups:
- [Discuss] email virus
  - From: gaf at blu.org (Jerry Feldman)
- [Discuss] email virus
  - From: me at mattgillen.net (Matthew Gillen)

Prev by Date: [Discuss] [OT] Least worst ISPs generally
Next by Date: [Discuss] email virus
Previous by thread: [Discuss] [OT] Least worst ISPs generally
Next by thread: [Discuss] email virus
Index(es):
- Date
- Thread


BLU is a member of BostonUserGroups
We also thank MIT for the use of their facilities.

Boston Linux & Unix / webmaster@blu.org