Seattle Web Design
Blog > RV: UPDATE YOUR E-MAIL SECURITY IMMEDIATELY (IUEU)

Meet the author:
Jill Olkoski

Jill has a MA in Clinical Psychology, a BS in Computer Science, and a BS in Mechanical Engineering.

She currently owns Aldebaran Web Design in Edmonds (near Seattle WA) and enjoys educating her clients on topics related to small business website design.

In Jill's previous life, she spent 17 years in the engineering and quality organizations of a Fortune 100 tech company.

 


RV: UPDATE YOUR E-MAIL SECURITY IMMEDIATELY (IUEU)

April 4th, 2011

One of my clients got an email today with this subject: RV: UPDATE YOUR E-MAIL SECURITY IMMEDIATELY (IUEU). It was from “Squirrel Mail Security Team”<sec20106@secmail.org>. Since my client uses DreamHost as his hosting company (as do I and we both use SquirrelMail) I immediately contacted DreamHost and they said the email was a fake. I’ve pasted the body of the actual email below – but if you get this email, DELETE IT. Do not click on the link inside it, do not open the attachment.

“Dear E-Mail User

Due to the package compromise of 1.4.11,1.4.12 and 1.4.13, we are forced to release 1.4.15 to ensure no confusions. While initial review didn’t uncover a need for concern, several proof of concepts show that the package alterations introduce a high risk security issue, allowing remote inclusion of files. These changes would allow a remote user the ability to execute exploit code on a victim machine, without any user interaction on the victim’s server. This could grant the attacker the ability to deploy further code on the victim’s server.
So upgrade to Squirrel Mail Development Team by click Squirrel Mail Login SquirrelMail 1.4.15 Released

We STRONGLY advise all users of 1.4.11, 1.4.12 and 1.4.13 upgrade immediately.”

 

Note that if you clicked on the “click Squirrel Mail Login”, you were taken to some website in the UK. And this email also had an attachment – DO NOT OPEN IT. Throw this away asap.

Jill
--------------
J. Olkoski
Aldebaran Web Design, Seattle
Jill Olkoski has a BS in Engineering, a BS in Computer Science and an MA in Clinical Psychology. She delights in using her advanced technical and psychological skills to help small business owners develop cost-effective and successful websites.



One Response to “RV: UPDATE YOUR E-MAIL SECURITY IMMEDIATELY (IUEU)”

  1. Oli Says:

    Thanks – just got one of those



 ©2006 - © Aldebaran Web Design Seattle, A DBA of Aldebaran Services LLC
Blog Email Subscription:
Search Blog Articles: