Alerte Phishing : faux email de Squirrel Mail
Et voici un email venant d'un escroc. Celui-ci tente de voler vos identifiants pour se connecter à votre webmail, et certainement tenter d'utiliser le même mot de passe sur des sites plus sensibles comme Paypal ou votre banque par exemple.
Il tente de vous rediriger sur une fausse page Webmail : http://www.iamjr.co.uk/wp-content/themes/autofocus/css/squire.php
L'adresse IP de notre escroc le situe en…Thaïlande !
IP address : 180.210.216.131 IP country code: TH IP address country: Thailand
Ne cliquez pas, ne répondez pas !
From: Squirrel Mail Security Team [email protected] To: undisclosed-recipients: Sent: Sunday, February 27, 2011 6:53 PM Subject: UPDATE YOUR E-MAIL SECURITY IMMEDIATELY (IUEU)
Dear E-Mail User
Due to the package compromise of 1.4.11,1.4.12 and 1.4.13, we are forced to release 1.4.15 to ensure no confusions. While initial review didn't uncover a need for concern, several proof of concepts show that the package alterations introduce a high risk security issue, allowing remote inclusion of files. These changes would allow a remote user the ability to execute exploit code on a victim machine, without any user interaction on the victim's server. This could grant the attacker the ability to deploy further code on the victim's server. So upgrade to Squirrel Mail Development Team by click Squirrel Mail Login SquirrelMail 1.4.15 Released
We STRONGLY advise all users of 1.4.11, 1.4.12 and 1.4.13 upgrade immediately.
A lire aussi :
Cet article fait partie des archives du site (2010-2015). Les techniques d'arnaque évoluent : en cas de doute sur un message récent, utilisez l'analyseur à jour.
Analyser un message suspect