Around this time of year, we often get internet greeting cards. Be careful - some of those cards are fake. Here's an email I received today: quote:
From: "postcards.com"
To: quasar@b0b.com
CC:
Subject: You have received a greeting from a family member!
Date: Fri, 15 Dec 2006 04:42:57 -0800 (PST)
You have received a postcard from a family member!
.
You can pick up your postcard at the following web address:
.
http://www2.postcards.org/?a91-valets-cloud-31337
.
If you can‘t click on the web address above, you can also
visit 1001 Postcards at http://www.postcards.org/postcards/
and enter your pickup code, which is: a91-valets-cloud-mad
.
(Your postcard will be available for 60 days.)
.
Oh -- and if you‘d like to reply with a postcard,
you can do so by visiting this web address: http://www2.postcards.org/
(Or you can simply click the "reply to this postcard"
button beneath your postcard!)
.
We hope you enjoy your postcard, and if you do,
please take a moment to send a few yourself!
.
Regards,
1001 Postcards http://www.postcards.org/postcards/
First of all, a real postcards.org card will tell you who the sender was, not simply "a family member". So that was a dead give-away. Rolling over the link in the original email, I see in my browser's status bar that it will actually invoke something called /flaviu.dary.ro/catali/postcards.gif.exe. The ".ro" means that it's a romainian website, and the ".exe" means that it's a program that will run on my computer.
This is certainly not right. Windows will allow an attack of this sort. Don't take the bait!
------------------
Bobby Lee
-b0b- quasar@b0b.com
System Administrator
My Blog
[This message was edited by b0b on 15 December 2006 at 09:15 AM.]
