A couple of my users got a fake spam / virus alert email overnight that really contained a malware payload. I saved the zipped attachment out and scanned it with Vipre, but it didn't find anything until I tried to extract the contents of the zip file.
John-AldrichTile-Tools From: Brian Richards [mailto:locomotive_breath_...@yahoo.com] Sent: Thursday, April 29, 2010 9:19 AM To: NT System Admin Issues Subject: Re: WTF? Fake AV Thread Hijack, new PDF exploit making the rounds. Amusingly, just got an ad from Adobe which encourages us to "Interact with recipients by sending out PDF forms" http://direct.adobe.com/v?xPJJvHWEJnqWWclHJT Brian MCSE and stuff <snip> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
<<image001.jpg>>
<<image002.jpg>>