Slashdot Mirror

← Back to Stories (view on slashdot.org)

State Governments Warned of Malware-Laden CD Sent Via Snail Mail From China (krebsonsecurity.com)

Posted by msmash on from the timely-reminder dept.

Security reporter Brian Krebs writes: Several U.S. state and local government agencies have reported receiving strange letters via snail mail that include malware-laden compact discs (CDs) apparently sent from China, KrebsOnSecurity has learned. This particular ruse, while crude and simplistic, preys on the curiosity of recipients who may be enticed into popping the CD into a computer. According to a non-public alert shared with state and local government agencies by the Multi-State Information Sharing and Analysis Center (MS-ISAC), the scam arrives in a Chinese postmarked envelope and includes a "confusingly worded typed letter with occasional Chinese characters."

33 comments

  1. CD? by TechyImmigrant · · Score: 3, Funny

    I would have to schlep upstairs to the only computer I have that has a CD drive.

    What's worse is that it's running windows, so it would be pwned instantly.

    --
    I should use this sig to advertise my book ISBN-13 : 978-1501515132.
    1. Re:CD? by Anonymous Coward · · Score: 0

      Good thing it wasn't Russian in origin.
      China gets a free pass I guess.?

    2. Re:CD? by datavirtue · · Score: 1

      I was going to say. If you have an optical drive you deserve what you get.

      --
      I object to power without constructive purpose. --Spock
    3. Re: CD? by Anonymous Coward · · Score: 0

      I'd have to plug in my external bluray drive. LOL I haven't used that thing once...shit I guess that's LG's LOL then.

    4. Re:CD? by eneville · · Score: 1

      I disconnected the power to it a long time ago. They're still useful. Magazines still put them on the covers, and if you buy music then you probably don't want the mp3, I've not seen flac files on sale, despite today's bandwidth being fine to cope with wav.

      --
      Why UNIX?
  2. IQ Filter? by shankarunni · · Score: 1

    Sounds like one.

    1. Re: IQ Filter? by Anonymous Coward · · Score: 0

      shut up nerd

  3. AOL CDs by frdmfghtr · · Score: 3, Funny

    Did the CD say "AOL" on it?

    --
    Government's idea of a balanced budget: take money from the right pocket to balance...oh who am I kidding?
    1. Re:AOL CDs by The+Original+CDR · · Score: 1

      Does your computer have a built-in cup holder?

    2. Re:AOL CDs by iggymanz · · Score: 1

      it has a coaster storage slit

    3. Re:AOL CDs by Obfuscant · · Score: 1

      Wrong continent. It says "COL".

    4. Re:AOL CDs by Anonymous Coward · · Score: 0

      40 free hours!

    5. Re:AOL CDs by Anonymous Coward · · Score: 0

      That's no way to talk about your mother.

    6. Re:AOL CDs by iggymanz · · Score: 1

      the whole coaster set, its wooden box, and four tumblers fit in your mother's cootch

    7. Re:AOL CDs by rtb61 · · Score: 1

      I seriously do use CDs or DVDs as coasters, why not. Currently resting by alkalised hot cocoa http://www.alkalizedcocoa.com/ (reduced sugar and well you are drinking the actual ground bean, so nourishing) on a SUSE Professional 8.2 DVD not out of hostility but memories. CDs and DVDs make great coasters, washable, some are quite attractive, would likely drive the fault correction on a drive insane if you tried to read it though.

      --
      Chaos - everything, everywhere, everywhen
  4. You misspelled Russia by Anonymous Coward · · Score: 0

    in both the title and summary.

    1. Re:You misspelled Russia by Anonymous Coward · · Score: 0

      i think your auto correct is not uptodate, it should have corrected to TrumpWhiteHouse

  5. I guess the ole USB trick is passe now... by QuietLagoon · · Score: 1

    Too many people have caught on to dropping infected USB drives in parking lots? https://www.schneier.com/blog/...

    1. Re:I guess the ole USB trick is passe now... by datavirtue · · Score: 1

      Yeah...all you have to do is make it look like it contains the company payroll records in a spreadsheet. They will eagerly open it, allow VBA (macros), and effectively get full control of the machine. Even if someone turns it in, HR will pop it in and open the spreadsheet.

      --
      I object to power without constructive purpose. --Spock
    2. Re:I guess the ole USB trick is passe now... by AHuxley · · Score: 1

      Penetration testers https://en.wikipedia.org/wiki/... did that for years.
      The NGO, charity worker who was "friends" with the boss. With a USB drive to show a short movie of some project.
      Ready for any computer.

      --
      Domestic spying is now "Benign Information Gathering"
  6. Russia Russia Russia by bwd777 · · Score: 2

    Can't we just say they were from Russia?

    1. Re:Russia Russia Russia by Anonymous Coward · · Score: 0

      Russia is not our enemy, ask any republican, its the Canadians you gotta look out for.

    2. Re: Russia Russia Russia by Anonymous Coward · · Score: 0

      And NATO... especially the British.

  7. Okay? by Murdoch5 · · Score: 2

    You create a VM in Virtual Box or KVM, you install Windows on it and open the disk in the VM on Linux, now you're fine. It's not hard to get around something this simplistic.

    1. Re: Okay? by Anonymous Coward · · Score: 0

      What's a VM? - my mother.

    2. Re: Okay? by akical0118 · · Score: 1

      Virtual box.org

    3. Re: Okay? by antdude · · Score: 1

      "Unable to retrieve http://virtual/ box.org/: Host not found" --yourmom

      --
      Ant(Dude) @ Quality Foraged Links (AQFL.net) & The Ant Farm (antfarm.ma.cx / antfarm.home.dhs.org).
  8. I know exactly how this happened. by jetkust · · Score: 4, Funny

    Man finds CD. Asks a random person. "What is this?". "It's a CD.", they reply. "What do I do with it?" "You Play it." "With What?" "A CD Player"

    4 hours later, man arrives at Best Buy and asks geek squad where he can purchase a CD player. He leaves with a $1500 laptop and an external drive.

    3 hours later he manages to boot into Windows 10. He places the CD into the drive as instructed. After 4 more hours he is able to get into File Explorer. He clicks on all the files but keeps getting errors. Realizing something was wrong, he calls the help line. The number was included in the readme.txt.

    The support technician spoke English, but had a heavy accent. It was a back and forth process but after about 3 and a half weeks they had everything squared away. When the updated CD arrived to his house, they remoted into his computer and installed it for him just to make sure there were no hiccups.

    The man came away refreshed. He would definitely do business with them again. In fact, he was so satisfied with the experience he shared the CD with everyone he met (but never used the laptop again).

    1. Re:I know exactly how this happened. by anegg · · Score: 1

      Your scenario sounds unlikely. You made no mention of the Windows Technician scam call he would receive from India, during which the caller would gain access to the machine and clear out all of the Chinese malware to avoid competition. It also neglects to add in enough delay caused by the random Microsoft Windows 10 updates and reboots interrupting the Chinese "support technician" and the Indian "Microsoft Technical Support" caller.

  9. someone leaked a green by Anonymous Coward · · Score: 0

    The green classification of this means it wasn't supposed to be shared on publicly accessible channels. Whoever shared this, wasn't following the guidelines.

  10. Does anything good come from China? by Anonymous Coward · · Score: 0

    Does anything good come from China? (Besides some products that are made there under the supervision of western managers.)

  11. In other news..... by Anonymous Coward · · Score: 0

    In other news.....

    Governement agencies in 2018 still haven't managed to roll out a "Disable Autoplay" policy. Meanwhile the public remained motionless, sound asleep.

  12. I once bought a Chinese USB drive which contained by cryptogranny · · Score: 1

    I once bought a Chinese USB drive which contained a virus. It was new and unpacked, from transend or some other brand, rubber case. Found it after manual mounting under Linux.