-
hosts file manipulation
The latest phishing attacks only require you to open the email. By doing so, a windows script runs, changing the IP of your favorite bank to a url somewhere else. Guess what happens to your username and password?
PayPal and CitiBank customers are getting hit hard...
Moral of the story -- Turn of WSH and check your hosts file!
-
Is this a MS Outlook flaw? I'm using Thunderbird.
-
Its for the Windows platform (unfortunately)
-
Its for the Windows platform (unfortunately), utilizing Windows Script Host.
I'd make a backup of our hosts file, and turn off html emails, I use text only emails. Since I've been working in security, I've become borderline paranoid.... where's my thorazine :)
An artice that covers it:
http://www.computershopper.co.uk/sho...ing-sites.html