Friday, June 22, 2007

Bloggers Beware: Spam and comment malware

I just received a spam that I thought everyone should be aware of. The spam claims that I have received an e-card from "a family member," but doesn't give my name or the senders name, so I'm sure it's spam. Also, the website sounds suspicious: yivisit.hk.

I didn't click on any of the links or go to the site; instead, I Googled the site, and I'm glad I did. Here's what I discovered:

1) A couple of discussion forums included this site in a thread about malware. I have no doubt that the malware will be downloaded simply by visiting this website. Either that, or they'll try getting your credit card info from you. Either way, it's not even worth the click to find out.

2) Many, many bloggerss have been getting post comments that leave this website. They have the same basic information: You've received an e-card. Now, come on. Who is going to believe that a friend or family member sent an e-card to their blog?!

In any case, this site obviously has some kind of malicious intent, and the spams and comments are apparently going around. Please, everyone, keep an eye out. Never click on a link in an email. If the sender is unfamiliar, don't do anything (except maybe Google it and warn your friends, like I am); if the sender is familiar but not a friend (perhaps PayPal or eBay), go directly to the site rather than clicking on the link, just in case it's a spoof. And, finally, even if the sender is a friend, you need to make sure that the link really takes you where it says it will, because some malware will take over your friends' email and send out messages to everyone in the address book!

I hate these people because they create the need to be cautious about even your best friends' emails!!!

5 comments:

Anonymous said...

Ack! I got something similar in my email. It wasn't to my blog, though...I don't think? Anyway, like a dumb*** I clicked it. I hurried up and X'd out before something started trying to download. This was...Oh, about a week ago so hopefully nothing happened.

Katharine Swan said...

Glad I'm not the only one. Anyway, I hope it didn't download anything to your computer. There's a couple of ways you can protect yourself, just in case:

* I like to check my "Processes" list (hit Ctrl+Alt+Del and click the "Processes" tab) occasionally -- you can Google the items on that list and make sure they aren't associated with spyware or malware.

* Check your program files (under My Computer) for programs you don't remember downloading, and Google them. I found out by doing this that AIM had downloaded spyware on my computer. Needless to say, I don't use AIM anymore.

* Use system restore to return your computer to a point before you clicked on the link. It won't affect any documents or emails you have saved, but it'll remove any programs that have been added since the restore point -- which will, hopefully, get rid of any spyware or malware you've accidentally downloaded.

Kathy@TheFlawlessWord said...

I got several of these too and like Alicia, I clicked on one (knowing full well it was probably a scam of some sort). My virus protection immediately detected it as malware, which is good, but I wonder how often new hoaxes slip through the cracks before the virus protection can update for them. I probably shouldn't be so curious all the time. LOL

Katharine Swan said...

I'm curious, too. You have no idea how hard it was to restrain myself from visiting the site, even though I knew it was probably harmful. ;o)

So what was on the site (besides the malware), anyway?

Kathy@TheFlawlessWord said...

Hi Katharine, there was nothing on the site that I could see. My browser just went to a blank page and sort of sat there until Norton Anti-Virus popped up with a warning that it had detected and deleted a malicious file. Definitely NOT worth the curiosity. ;o)