Cyber Security Alert SA07-303A ~ Security Garden

Tuesday, October 30, 2007

Cyber Security Alert SA07-303A

As published by US-CERT, the Federal Trade Commission (FTC) has reported (again) spoofed e-mail messages appearing to be from the FTC and containing malicious code in the attachment. Think about it, do you really expect an email from the FTC? That being the case, why would you open it?

Following is how the FTC describes the spoofed email as follows:

"The spoof email includes a phony sender's address, making it appear the email is from "frauddep@ftc.gov" and also spoofs the return-path and reply-to fields to hide the email's true origin. While the email includes the FTC seal, it has grammatical errors, misspellings, and incorrect syntax."

Keep your anti-virus software updated and check out the excellent reference materials from US-CERT and copied below

References

Cyber Security Tip ST04-014 - Avoiding Social Engineering and Phishing Attacks http://www.us-cert.gov/cas/tips/ST04-014.html

Cyber Security Tip ST04-010 - Using Caution with Email Attachments http://www.us-cert.gov/cas/tips/ST04-010.html

Cyber Security Tip ST04-005 - Understanding Anti-Virus Software http://www.us-cert.gov/cas/tips/ST04-005.html

Cyber Security Tip ST05-006 - Recovering from Viruses, Worms, and Trojan Horses http://www.us-cert.gov/cas/tips/ST04-006.html

Trends in Badware 2007 http://www.stopbadware.org/home/consumerreport

Don't Open Bogus Email that Comes from the FTC http://www.ftc.gov/opa/2007/10/bogus.shtm

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Welcome to the Security Garden, where everything is coming up roses.

The best way to protect your garden is to fence it in. The same applies to your computer.
Get computer security news and information, help, tips and more at the Security Garden.

Articles

My Garden Roots

Perennial Favorites

Article Categories

Tuesday, October 30, 2007