Monday, June 18, 2007

.hk TLD attack warning

I came into the office today and noticed a flood of email with subject lines like:

[name] sent you a [domain].hk! Greeting

Inside, the message invites you to view a greeting card within 30 days. This URL contains malicious code that attempts to exploit Internet Explorer vulnerabilities among other Windows vulnerabilities.

Email server administrators should take action immediately to filter and kill these messages.

See more here from SANS:
http://isc.sans.org/diary.html?storyid=2985

1 comment:

Jake said...

I work at Warren County, NY and we just started receiving a bunch of these as well. Spammers... bah!

Thanks for the link to the SANS article, it was incredibly helpful!