Thousands of users worldwide have already had their login names and passwords and online banking credentials stolen by this exploit. 

It arrives in the form of an email greeting card from a secret admirer.

Attempting to read the ”greeting card” redirects the user momentarily to a web site that attempts to install key logger software, hidden by a rootkit, then it displays the greeting card. 

I you have installed the MS06-014 patch, released in May, you are not vulnerable to this exploit.

This is an example of why keeping up to date with Microsoft Updates is critical to safe computing.

Posted on Friday, September 22nd, 2006 at 9:58 am and filed under All Posts, Email Security, Malware, Root kits, Safe e-Commerce, Scams. You can follow any responses to this post through the RSS 2.0 feed. You can leave a comment, or you may trackback from your own site.