VirusList.com Virus Alerts & Virus News. Monday, November 04, 2002
*******************************************
1. Deceptive E-greetings Increasingly Used This Holiday Season
2. How to subscribe/unsubscribe
1. Deceptive E-greetings Increasingly Used This Holiday Season
Unscrupulous marketers are increasingly luring unsuspecting computer users into traps with the promise of "wholesome" e-greeting cards. In another example of this ploy, an Internet porn company has sent out an email promising an e-greeting from the forged return address
[email protected], but instead of receiving a heart warming e-card, users are force-fed a Trojan horse program that is a hidden browser plug-in. This plug-in delivers Internet Explorer users a slew of porn
pop-ups.
The Trojan program has been dubbed, 'Cytron' by the NIPC (National Infrastructure Protection Center). Users can spot this email message according the following criteria:
- forged return address: "
[email protected]"
- an endearing smiley face background
- black, wiggly text stateing, "You have received an e-card"
- a graphic hand holding an envelope
Don't click this hand!! Doing so brings users to "suprisecards.net",
where the surprise is an e-card viewer plug-in cleverly coupled with a confidence boosting digital certificate. Once accepted, Internet Explorer will begin feeding sexy full-sized pop-up ads for adult websites mostly operated by Canada-based Cytron Communications Ltd.
Users never view any greeting card.
ass hole's
