It’s that time of year again when fake online greeting cards increase in the daily Outlook mailbox and in web based mail as well).
A common give away? The sender is often listed only by first name – no last name – and includes links to various e-card sites: this was from Michelle offering "Happy Wishes!"
Michelle has created the ecard.
Here’s your greeting card: [this one from included a URL from greetingcardcalendar.com]
Thank you, greeting-cards.com team.
As I noted in a post last year on the subject, Brian Krebs of the Washington Post highlighted this problem in his post on Not-So-Friendly Greeting Cards. Krebs noted that the rise of fake online greeting cards that can install keystroke loggers on to your computer, rather than delivering what you thought to be an innocent e-card from a long lost aunt.
"You might want to think twice before opening that e-greeting card sent to you via e-mail. Cyber crooks have recently been blasting out millions of fake online greeting cards in the hope that recipients will click on the included links and infect their computers with password-stealing viruses.
"Previous e-greeting card scams harbored their viral payload in an infected e-mail attachment, but fraudsters now are simply embedding links in the fake card messages. Anyone who clicks on such a link without the benefit of the most recent security updates for their Web browser is likely to have their PC silently whacked with an invasive keystroke-logging program.
"… It is sad that the state of e-mail security has come to this, but Microsoft Windows users would be well-advised to simply delete any e-greeting cards that land in their inboxes."
For more info, see the Wiki link on the Storm Worm, and here on Symantec’s site.
Also, here’s the link if the embedded links above don’t work: http://blog.washingtonpost.com/securityfix/2007/07/notsofriendly_greeting_cards_1.html
And see my past note on how there’s no immunity from security vulnerabilities.
More info:
- Visit http://www.staysafeonline.info.
- To find out more about spyware – what it is, ways your computer can become infected, and what you can do to prevent it – watch this video on protecting your computer.
- If you’re wondering how Windows Defender compares with other Microsoft antispyware and antivirus technologies, check out this product comparison chart.
- Windows Live Safety Center – A Web service designed to help ensure the health of your computer with free scanning tools that help you get rid of unwanted software.
- Malicious Software Removal Tool – A security tool that checks your computer for specific viruses and other malicious software and helps remove any infection found. This tool alone has run more than 2 billion executions.
- Sign up for our security newsletter and receive monthly advice
- Get more online safety tips
Tags: Microsoft, security, antivirus, antispyware, Windows Defender.
I like the way that Gregg describes the issue and provides suggested actions.