Beware this email
- Thread starter Rock
- Start date
- Status
Spoofed sending email address ... not really from ftdi. I've receveid several from FTD accounts and several flower shops ... but they are all spoofed.
Ryan
Ryan
I agree Ryan, my point was to warn other FTD members that this wasn't an email from FTDI (who sometimes sends us members emails) and not to open the attachment if it got past their virus program. McAfee Viruscan cleaned it and informed me it was Netsky (sp?).
Gee I wonder how this virus got passed FTD e-mail list. or could it be someone using ftdi as part of their mailing of viruses.
Luc
Luc
Rhonda
Well-Known Member
Got an email from Brian at florisboard.net concerning my website and when I replied to him I got a message stating that there may be a potential worm in my OUTgoing message...hmm...did Stinger and McAfee and nothing found and made sure I was up to date on alerts too. Interesting...
Luc,Luc said:
It works like this:
ABC florist gets infected with a virus.
The virus looks at ABC's Address Book of email addresses, and picks two.
The virus causes ABC's computer to send a message TO one person from the address book FROM another in the address book. That way, you never really know where the virus came from.
Ryan
I always thought that FTD had a virus protection on their site.
I am little lost here.
Did the virus start at FTD or the person abc florist who received a message from ftd, which ftd e-mail addy was in her files, the virus got attached to that addy and now is being sent to everyone that was attached to that e-mail.
Luc
I am little lost here.
Did the virus start at FTD or the person abc florist who received a message from ftd, which ftd e-mail addy was in her files, the virus got attached to that addy and now is being sent to everyone that was attached to that e-mail.
Luc
BOSS
FlowerChat Administrator
I have gotten them from email addys with and FTDI extension, as well as Floristboard and many others like teleflora and so on.
It is not unusual, these days, and just because it says FTDI or whatever that does not mean thats where it came from. The big guys are pretty careful with their systems, and everything that FTD sends out goes thru MessageLabs prior to being sent.
Most likely, it came from someone that did not even knnow they sent it, because they picked up the bug, and their systems sent it.
The only way to be sure your safe these days is to run programs that filter in INbound and OUTbound, and keep them up to date !!!!!!!
It is not unusual, these days, and just because it says FTDI or whatever that does not mean thats where it came from. The big guys are pretty careful with their systems, and everything that FTD sends out goes thru MessageLabs prior to being sent.
Most likely, it came from someone that did not even knnow they sent it, because they picked up the bug, and their systems sent it.
The only way to be sure your safe these days is to run programs that filter in INbound and OUTbound, and keep them up to date !!!!!!!
Luc said:
Ok here is a simplified version of what can happen.
A person has an email program with an address book. In that address book are lots of email addresses including an email address from FTDI.com. That same person gets attacked by a virus. That virus is programed to look in the address book and picks at random one or several email addresses and it happens to pick the address that says FTDI.com. Then that virus sends uses the email program to send emails to the people on the email address list and spoofs the email adresses to look like they are cominf from the FTDI.com address when they are really not. The virus never has to reach FTDI.com to send something with the emails adress FTDI.com. It justs fakes it.
You see Luc there could be viruses going out with YOUR Email address even though you were never infected. Scary isn't it.
Mikey the Flower Guy
It's a GREAT DAY to live, and love!
- Nov 10, 2002
- 9,206
- 3,792
- 113
- 72
- State / Prov
- Ontario
And...
that very same virus can lay dormant on your system, and a particular set of parameters sets off an executable file, and places an out going message, in your out box, and waits for you to check mail.
For those of us that have our emailers running to check every 5 or 10 minutes, are LESS likely to be infected, as the firewalls/virus scanners are doing their work all the time!!
For those people that check their mail every so often, are MORE suseptable.
Mike
that very same virus can lay dormant on your system, and a particular set of parameters sets off an executable file, and places an out going message, in your out box, and waits for you to check mail.
For those of us that have our emailers running to check every 5 or 10 minutes, are LESS likely to be infected, as the firewalls/virus scanners are doing their work all the time!!
For those people that check their mail every so often, are MORE suseptable.
Mike
- Status