The Latest in IT Security

.com malware pretends to be naughty .com website

28
Oct
2012

Sometimes the “other side” uses a neat trick that seems so obvious. In these cases we think “they must have done this before” – then we search the archives (Google) for proof that it has indeed been used before. A good example is our post from last year where we documented the abuse of the HTML textarea tag. We received several responses informing us that it wasn’t a new trick – but no one could actually remember having seen it used anywhere.

So with this in mind, we present today’s obvious malware trick – that seems new but may have been used before…

The email doesn’t include much text – simply asking that you “Pay attention at the attach.”

The neat trick: The attachment name uses its .com suffix to mimic a website name. Unfortunately, the website name that is faked is not really repeatable on this family-oriented blog – but trust us; we blushed when we saw it. As shown in the screenshot it’s www.——-face.com. Those tempted to double-click the “link” in order to visit a porn site would find themselves attacked by malware.

Have you seen this before? – was this trick already used in 1996? – please let us know.

Leave a reply


Categories

THURSDAY, JANUARY 20, 2022
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments