New (?) phishing scam only requires user to read E-mail
Results 1 to 3 of 3

Thread: New (?) phishing scam only requires user to read E-mail

  1. #1
    Hi mom!
    Join Date
    Aug 2001

    New (?) phishing scam only requires user to read E-mail

    Full article here

    There seems to be a new phishing technique, that requires nothing more of a user than opening an E-mail.

    Exploiting Windows Scripting Host and/or ActiveX, that E-mail executes a script that alters the content of the Windows hosts file. Effectively, it assigns different IP's to Domain names, and points users that use that domain name to a forged website.
    I wish to express my gratitude to the people of Italy. Thank you for inventing pizza.

  2. #2
    Join Date
    Nov 2002
    It goes without saying if you are using outlook for you email disable all scripting.

    This can be checked / configured in outlook as follows

    Tools -> Options

    Under the "Security" Tab

    Under Secuirty zones section

    Click on the zone settings button next to the zone you have selected

    Then click customer level. Scroll down the list of radio buttons and check that you have all ActiveX / Scripting options set to disable.

  3. #3
    Macht Nicht Aus moxnix's Avatar
    Join Date
    May 2002
    Huson Mt.
    Anouther artical on the same subject.

    And another.
    \"Life should NOT be a journey to the grave with the intention of arriving safely in an attractive and well preserved body, but rather to skid in sideways, Champagne in one hand - strawberries in the other, body thoroughly used up, totally worn out and screaming WOO HOO - What a Ride!\"
    Author Unknown

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts