June 19th, 2002 09:42 AM
Trojans with email services
I have heard of trojans that are sent thru hotmail and other online email services and capture passwords if they are replied to. Something like that. How do they work?
June 19th, 2002 10:24 AM
I believe you would be talking about wurms or virii; trojans aren't capable of working like that.
WE ARE the anti cancer...
WE ARE the only answer...
June 19th, 2002 01:16 PM
The trojan is sent to you in an email message as an attachment. When you open the attachment, it is installed on your computer. One of the things that gets installed is a keystroke logger. This logger serarches for the word password on your screen, and captures whatever you type in after it. Your text is then sent off to a hotmail account owned by the person that sent you the trojan....
\"Ignorance is bliss....
but only for your enemy\"
June 20th, 2002 09:42 PM
unlike outlook explress, trojans can not excuted on web based mail ( unless you download and run them ).
June 20th, 2002 10:11 PM
Sometimes it's a key-logger but sometimes it brings up a fake "re-login" screen.
June 20th, 2002 11:05 PM
There are other possibilities!!
You know guys & gals...
Maybe he has his terms mixed up?
Because from what I've read...
If we remove the word Trojan...It sounds like one of the vulnerabilities Hotmail HAD with it's ability to parse scripting languages.
that are sent thru hotmail and other online email services and capture passwords if they are replied to
What you may also be talking about is something called Cross Site Scripting (XSS)!
In that case, it would be an unsuspecting link..that when clicked would send a user's cookie to an attacker. The attacker could then use the cookie to access the users email (assuming it was within a certain timeframe)
Hope that helped
\"Your work is to discover your world and then with all your heart give yourself to it. \"
June 21st, 2002 12:16 AM
Hell a trojan can do more than just take away your privacy, it can help peaple take over a system if setup properly.