New Exploit - "BlackChristmasCard.com"

[SCCutler]

I got an email that I was being sent an "e-card" from "Betty"- the link it gave was "BlackChristmasCard.com"; I was suspicious, so I went to the website directly, and every link on it tries to invoke an executable.

http://isc.sans.org/diary.html?date=2008-12-25

Be careful!

 

[silver-eagle]

Cold Nick. Real cold.

 

[mikea]

Go Go magic linux browsing. I gotta see this.

edit: wow. They weren't even smart enough to mask the status bar? Lame. I hasten to say that anyone that falls for this one needs a mac.

I recommended a Mac my old neighbor but then he got mad when the site said he needed the plug-in, It was called powned.exe and it wouldn't work on a mac.. I can't imagine what kind of site it was.