Monday, April 02, 2007

Trojan Horse

I got this bizarre email at work from our IT department:
Someone received an envelope from:

OCE'
5729 LEBANON RD
STE. 144-275
FRISCO, TX 75034

The envelope contained a plastic horse, about 2" long and 1"
high. Around the waist of the horse was an Avery label with the word
WORK on it. The envelope also contained a piece of white card stock, 5"
x 2" , with the following url:

"some url"

When my guy went to the url, ( using his laptop
computer) his screen tuned blue and he received over 150 pieces of spy
ware. The program then started collecting data.
It looks like the program collected about 40 different excel
files before he disconnected his computer from the internet.

Please let me know if you receive anything like this ASAP,
remember to try to save the envelope and toy (or whatever is in the
package) for finger printing and tell your IT guy to be on the lookout
as well.

I hadn't heard of this before. It must be a very specifically targeted attack since the senders had to know that the target had something of value on his PC. My guess is Chinese government hackers.

No comments: