ack-rimonious

EarthAnjel@aol.com EarthAnjel@aol.com
Fri, 26 Oct 2001 09:37:10 EDT 

--part1_25.1d42cc92.290ac106_boundary
Content-Type: text/plain; charset="US-ASCII"
Content-Transfer-Encoding: 7bit

FYI from Queezy in Folsom:

E-Mail 'Trojan Horse' Poses as Red Cross Solicitation

Reuters
  
SAN FRANCISCO (Oct. 25) - A malicious computer program is quietly making the 
rounds, disguising itself as an e-mail donation form for the American Red 
Cross while attempting to steal credit card information, antivirus vendors 
said on Thursday. 

When the e-mail attachment is opened, the malicious program, called 
Septer.Trojan, prompts people to fill in a donation form purporting to aid 
the victims of the Sept. 11 attacks. 

The information is then sent to a Web site that is not affiliated with the 
Red Cross, according to Symantec Corp. 

The program, called a Trojan horse because it masquerades as something else, 
is rated a low risk because it is not spreading widely, said Patrick Martin, 
development manager of Symantec's security response center. 

Unlike computer worms which can spread themselves automatically, the Trojan 
is spread only by someone forwarding it to another person, he said. 

"We've only gotten a handful of submissions," Martin said of the Trojan, 
which was first discovered last week. "People are being suspicious because 
it's very unusual for an agency or organization such as the Red Cross to 
solicit donations in such a promiscuous manner." 

However, Three Pillars, a managed security services firm, saw a lot of the 
Trojan e-mails being sent to its customers, according to Ruth Lestina, vice 
president of operations and engineering. 

On Thursday alone there were 142,000 Trojan e-mails coming into the network, 
she said. Customers were protected with antivirus software, Lestina added. 

"It's playing on people's feelings from the September tragedy," she said. 

"It's deemed a low risk because the user has to take an action, but if you 
look at anything on the news these days, the American public is very, very 
willing to help anything pertaining to the tragedy and the Red Cross is a 
trusted name," Lestina said. 

20:25 10-25-01


--part1_25.1d42cc92.290ac106_boundary
Content-Type: text/html; charset="US-ASCII"
Content-Transfer-Encoding: 7bit

<HTML><FONT FACE=arial,helvetica><FONT  COLOR="#0000ff" SIZE=2 FAMILY="SANSSERIF" FACE="Arial Black" LANG="0">FYI from Queezy in Folsom:
<BR>
<BR></FONT><FONT  COLOR="#000000" SIZE=5 FAMILY="SANSSERIF" FACE="Arial" LANG="0"><B>E-Mail 'Trojan Horse' Poses as Red Cross Solicitation
<BR></FONT><FONT  COLOR="#000000" SIZE=1 FAMILY="SANSSERIF" FACE="Arial" LANG="0">
<BR></B><I>Reuters</FONT><FONT  COLOR="#000000" SIZE=5 FAMILY="SANSSERIF" FACE="Arial" LANG="0"><B></I>
<BR></FONT><FONT  COLOR="#000000" SIZE=2 FAMILY="SANSSERIF" FACE="Arial" LANG="0"></B> &nbsp;
<BR>SAN FRANCISCO (Oct. 25) - A malicious computer program is quietly making the rounds, disguising itself as an e-mail donation form for the American Red Cross while attempting to steal credit card information, antivirus vendors said on Thursday. 
<BR>
<BR>When the e-mail attachment is opened, the malicious program, called Septer.Trojan, prompts people to fill in a donation form purporting to aid the victims of the Sept. 11 attacks. 
<BR>
<BR>The information is then sent to a Web site that is not affiliated with the Red Cross, according to Symantec Corp. 
<BR>
<BR>The program, called a Trojan horse because it masquerades as something else, is rated a low risk because it is not spreading widely, said Patrick Martin, development manager of Symantec's security response center. 
<BR>
<BR>Unlike computer worms which can spread themselves automatically, the Trojan is spread only by someone forwarding it to another person, he said. 
<BR>
<BR>"We've only gotten a handful of submissions," Martin said of the Trojan, which was first discovered last week. "People are being suspicious because it's very unusual for an agency or organization such as the Red Cross to solicit donations in such a promiscuous manner." 
<BR>
<BR>However, Three Pillars, a managed security services firm, saw a lot of the Trojan e-mails being sent to its customers, according to Ruth Lestina, vice president of operations and engineering. 
<BR>
<BR>On Thursday alone there were 142,000 Trojan e-mails coming into the network, she said. Customers were protected with antivirus software, Lestina added. 
<BR>
<BR>"It's playing on people's feelings from the September tragedy," she said. 
<BR>
<BR>"It's deemed a low risk because the user has to take an action, but if you look at anything on the news these days, the American public is very, very willing to help anything pertaining to the tragedy and the Red Cross is a trusted name," Lestina said. 
<BR>
<BR>20:25 10-25-01
<BR></FONT></HTML>

--part1_25.1d42cc92.290ac106_boundary--