Spam Opt-out Link Triggers Malicious Code Attack
Maestro4k writes "The Register is reporting on a new spam E-mail circulating out there. In it, clicking on the 'Click here to remove' link launches a site, that when the user scrolls the page, triggers a drag-drop javascript exploit. Scarily the E-mail actually complies with the CAN-SPAM act as it only requires spammers to put an opt-out link in their mailings. As The Reg says "It comes as little surprise that this feature is been taken advantage of in a social engineering exploit; but it does illustrate the security problems of the opt-out approach that were always apparent to security experts - and ignored by legislators." The link in questions points to www. xcelent.biz (As in The Reg story, space intentionally included) so even if you can't block the mail yet it should be easy to block access to the site with the exploit. I suspect this is just the beginning and most spam will include "features" such as this in the near future."
https://gmail.google.com/gmail/a-b0ab39f1a8-517235 8b19-6f45f145ca c 0563-18969179a8 1 50e2-0bef3ba2a4 2 cd83-e0644e7ef5 6 9d32-22621daaff 7 c84e-b9e70ce4cd
https://gmail.google.com/gmail/a-b0ab39f1a8-13556
https://gmail.google.com/gmail/a-b0ab39f1a8-bc9b1
https://gmail.google.com/gmail/a-b0ab39f1a8-d6f30
https://gmail.google.com/gmail/a-b0ab39f1a8-62e3c
https://gmail.google.com/gmail/a-b0ab39f1a8-6c3f0
fp
You don't want to see the graphics these links display!
GNAA President timecop has been fired. Penisbird is now replacing him in this position.
Tech News Live has a detailed summary of this expliot and the code they used. It is an interesting read.
Look at the links in the original post. Notice the added URL at the end of the supposed "Google invites" link? If you klick on these you deserve what you get.
Somewhere on this planet there is a bunch of fscking losers whose sole means to get satisfaction is to redirect newbs to shock sites à la goatse or tubgirl. How utterly pathetic.
And I'm feeding them, I know, I know...
I hear your email is lastmeasure@gmail.com , right ? That's the address that was used for nyud.info, hope you like spam, asshole !
Mod this as +1 Informative. I'll keep posting this until some asshole figures out why new articles always display this annoying comment when I click on them. The only thing Redundant here is slashdot editor incompetence.
teabagger! teabagger! teaaaaaabaaaaaggggggeeerrrr!!!!