Find your solution!

The Pontificator · 24-Oct-2009, 10:11 PM #1

Using a computer running Linux Mint 7, my mother fell for the latest hacker scam which involves sending the recipient a phony email from a package shipper claiming a parcel cannot be shipped but to click on an attachment to retrieve a pickup authorization at one's local post office.

The attachment is actually a trojan designed to allow hackers to install adware/malware/keyloggers, or who-knows-what.

I need to determine what damage, if any, this attachment has done. Mom says it wouldn't open (.zip file) and I permanently deleted both it and the offending email.

I'm guessing that this nonsense was written to attack a Windows computer. If so, may we rest easy knowing Linux saved the day?

Here is some info on this particular scam:

http://www.sophos.com/blogs/gc/g/200...-missing-mail/

saikee · 25-Oct-2009, 06:22 AM #2

If your mom log in as a normal user then there should be no damage to the OS as the system files are not owned by her.

Most Linux do not allow a root user to use the desktop so "clicking" (meaning log in as an ordinary user in a desktop) should not cause much a threat.

I guess other forum members will have their view but a quick way to get over it would be to delete your mom's account and create a new one using a different name. Thereforeafter just remove her old folder in the /home directory.

RobLinux · 25-Oct-2009, 11:50 AM #3

Don't think any Linux clients are so brain dead, as to go and execute an attachment, without you taking further action after saving it, like clicking on generated icon on desktop. So long as your Mom's system is kept up to date with security patches via an online update, don't worry.

I don't think even your Mom's files will be damaged. I wouldn't have deleted the email but actually have investigated the pay load a bit further to see how it was intended to work (once it's been activated). The archive file format .zip can be opened, and modern Windows exposes the inner structure allowing Clickety Mischief to be done after.

I remember receiving this Scam Mail myself, and thought it was quite well crafted to get ppl to click.

briealeida · 26-Oct-2009, 10:39 AM #4

If you're concerned, you could run/install clamAV for peace of mind.

Tag Cloud
access audio black screen blue screen boot bsod connection crash dell desktop driver drivers dvd email error excel excel 2003 firefox hard drive hardware hdmi hijackthis internet itunes keyboard laptop malware monitor motherboard network networking outlook problem recovery router screen slow sound spyware trojan upgrade video virus vista vundo windows windows 7 windows vista windows xp wireless

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)

Search
Search for: