Trojans with email services
Results 1 to 7 of 7

Thread: Trojans with email services

  1. #1
    Banned
    Join Date
    Nov 2001
    Posts
    3

    Question Trojans with email services

    I have heard of trojans that are sent thru hotmail and other online email services and capture passwords if they are replied to. Something like that. How do they work?

    with respect
    Pythras

  2. #2
    I believe you would be talking about wurms or virii; trojans aren't capable of working like that.
    WE ARE the anti cancer...
    WE ARE the only answer...
    email

  3. #3
    AntiOnline Senior Member souleman's Avatar
    Join Date
    Oct 2001
    Location
    Flint, MI
    Posts
    2,884
    The trojan is sent to you in an email message as an attachment. When you open the attachment, it is installed on your computer. One of the things that gets installed is a keystroke logger. This logger serarches for the word password on your screen, and captures whatever you type in after it. Your text is then sent off to a hotmail account owned by the person that sent you the trojan....
    \"Ignorance is bliss....
    but only for your enemy\"
    -- souleman

  4. #4
    unlike outlook explress, trojans can not excuted on web based mail ( unless you download and run them ).

  5. #5
    Senior Member
    Join Date
    Nov 2001
    Location
    Ireland
    Posts
    735
    Sometimes it's a key-logger but sometimes it brings up a fake "re-login" screen.

  6. #6
    Senior Member
    Join Date
    Oct 2001
    Posts
    175

    There are other possibilities!!

    You know guys & gals...

    Maybe he has his terms mixed up?

    Because from what I've read...
    that are sent thru hotmail and other online email services and capture passwords if they are replied to
    If we remove the word Trojan...It sounds like one of the vulnerabilities Hotmail HAD with it's ability to parse scripting languages.

    What you may also be talking about is something called Cross Site Scripting (XSS)!
    In that case, it would be an unsuspecting link..that when clicked would send a user's cookie to an attacker. The attacker could then use the cookie to access the users email (assuming it was within a certain timeframe)

    Hope that helped

    Simon Templer
    Simon Templer

    \"Your work is to discover your world and then with all your heart give yourself to it. \"
    -The Buddha

  7. #7
    Banned
    Join Date
    Jun 2002
    Posts
    40
    Hell a trojan can do more than just take away your privacy, it can help peaple take over a system if setup properly.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

 Security News

     Patches

       Security Trends

         How-To

           Buying Guides