I have seen this too.
I don't know if this is the same thing, but my users were tricked into
installing something that did this. In the click though EULA, (which no one
ever reads) it said exactly what it was going to do too! And they still call
it a 'virus' around here...!
In this case, a an unsolicited message was sent with an attached program (in
zip form) it only took 1 fool to install it. Once in, it was sent to people
in the address book. Then it was coming from a 'credible' person, nullifying
the first rule of email: "Don't open email from those you don't know"
I think in the future, this propagate via white-lists is going to be the way
to go for spammers. User education is the only solution here.
-----Original Message-----
From: asrg-admin(_at_)ietf(_dot_)org
[mailto:asrg-admin(_at_)ietf(_dot_)org]On Behalf Of Alan
DeKok
Sent: Monday, March 31, 2003 3:51 PM
To: asrg(_at_)ietf(_dot_)org
Subject: Re: [Asrg] Is this a new spam form?
Chuq Von Rospach <chuqui(_at_)plaidworks(_dot_)com> wrote:
she got spam addressed from a user of her mail list. That user seems to
have gotten "something" that caused her machine to send a spam message
to everyone in her address book.
Which indicates a useful definition for spam:
"spam is email which the user of the MUA did not intend to send"
I hadn't thought about it before now, but this seems like a great way
to propogate a spam message, because it works through whitelists and
around subscription blocks on lists nicely, and doesn't require open
relays or open proxies.
I agree. There are many, many machines out there which are
"owned". Many are being used to send spam *without* a MUA.
Alan DeKok.
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg