lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <006e01c39375$d483a5c0$c400a8c0@MLANDE>
From: mlande at bellsouth.net (Mary Landesman)
Subject: FW: Last Microsoft Patch

Swen also uses microsoft.com; the samples I have received do so more often
than not.

For a full list, see:
http://www.f-secure.com/v-descs/swen.shtml

Regards,
Mary Landesman
Antivirus About.com Guide
http://antivirus.about.com

----- Original Message ----- 
From: "Chris DeVoney" <cdevoney@...ashington.edu>
To: <full-disclosure@...ts.netsys.com>
Sent: Wednesday, October 15, 2003 5:38 PM
Subject: RE: [Full-Disclosure] FW: Last Microsoft Patch


Others will address the virus represented in this trojan e-mail, but MSNBC
is the domain for the Microsoft-NBC news web site. The pure illogic of
sending out security outdates from a domain for news/weather/sports is
pretty strong. So was using MSN.COM, their internet service, as a domain. If
the masqueraders had used Microsoft.com, it may have been a more believable
trojan (except that Microsoft states repeatedly they NEVER e-mail outdates).

cdv

-----Original Message-----
From: full-disclosure-admin@...ts.netsys.com
[mailto:full-disclosure-admin@...ts.netsys.com] On Behalf Of Curt Purdy
Sent: Wednesday, October 15, 2003 12:05 PM
To: full-disclosure@...ts.netsys.com
Subject: [Full-Disclosure] FW: Last Microsoft Patch



Anybody else get this?  Looks legit, originating address is from msnbc.com.
But can't believe even Microsoft would be this stupid after the rash of
trojan-attached "patch announcements" lately.  Plus all security people have
been saying that Microsoft would never email a patch out.  Or are they
thinking, "Send this out so all the stupid people will click on this before
they click on a real trojan?



Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ