Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years.

Thanks,

CNET Support

General discussion

E-card Hijack Spam

Feb 21, 2004 8:44AM PST

Introduction
I got an email on February 15th, 2004 telling me I had received an e-card from someone at 123greetings.com. The email looked a little bit suspicious, since the sender of the ecard (kissmytearsx@comcast.net) was someone I didn't recognize, and the URL to view the card showed the root domain of 123greetings.com. However, being the lonely geek I am, I clicked on the link hoping that I had a secret admirer who had emailed me a card for valentines day...

The page opened in my browser, but nothing happened. Lucky for me, I wasn't using Internet Explorer so I was saved. A closer look at the email and URL revealed an attempt to use IE exploits to hijack the computer and install a trojan that steals sensitive information including passwords and bank account numbers.

It has been pointed out to me that the email says that you sent a card, not received one. I should have noticed this and realized I hadn't sent any cards to anyone.

http://www.tjhsst.edu/~agupta/ecard-hijack/

WARNING: Do not click on the links noted in the article. Few links has live scripts in them.

Discussion is locked