Categories: security

Malware as twitter password reset

Wow.  This caught me by surprise this morning.  The message below (forwarded to Google Mail) looks legit, but if you hover over the link, you see it points to a binary (password.exe) hosted on gameroomhaven.com.

Most of the message is legit.  The links at the bottom of the post are legit, pointing back to twitter.com.  However, the e-mail address in the SPAM is one I only use for a high school alumni site.  Based on that, I started to look at the message more carefully and noted the malware link posing as the password reset URL.

Lesson here, don’t click on links in your e-mail without verifying the source.

Using the Google Mail ‘Show original’ feature (drop down in upper right corner of each message) showed the source code for the message where the malicious URL is obvious. A snippet from the original below:

Hey there.

Can't remember your password, huh?
It happens to the best of us.

Please open this link in your browser:

http://www.gameroomhaven.com/password.exe

This will reset your password.
You can then login and change it to something you'll remember.

Technorati Tags: ,
Paul Begley

Share
Published by
Paul Begley

Recent Posts

Home computer security recommendations

I recommend you keep your Windows OS patched and be sure to update all the…

1 year ago

Internet speed tests

With more people streaming and general Internet use increasing, I get questions about measuring home…

1 year ago

Windows endpoint security recommendations

Friends and family have asked about antivirus and security recommendations. This is a quick summary…

1 year ago

Home network update – Meraki to Netgate

I avoid frequent changes to my home network. My stated goal is to design and…

2 years ago

PiHole update – certificate error

Attempting to update PiHole from the command line, I received the error below: [i] Downloading…

2 years ago

Obituary – Maureen Begley

Maureen A. Begley (nee Burchill), age 91, of Chillicothe, Ohio, formerly Moorestown and Mount Laurel,…

3 years ago