jpaik
join:2002-01-09
Oakville, ON
| Surprise package in "email from "staff@cogeco.ca"
Imagine my surprise in receving this email moments ago:
"Dear user, the management of Cogeco.ca mailing system wants to let you know that,
Your e-mail account has been temporary disabled because of unauthorized access.
Please, read the attach for further details.
In order to read the attach you have to use the following password:
Yours,
The Cogeco.ca team "
Of course, the attached file is virus-infected.
Email details show:
"Received: from home.com (d150-68-118.home.cgocable.net [24.150.68.118])
by fep5.cogeco.net (Postfix) with SMTP id 5785C1DD1"
Must do a trace on that IP. Meantime, any Cogeo tech folks care to comment. Krispy?
Thanks.
JP
--
I stopped listening. My cornflakes stopped talking. |
|
osme
Premium
join:2001-09-07
Hamilton, ON | Re: Surprise package in "email from "staff@cogeco.
Was it, by any chance, a Netsky variant? |
|
jpaik
join:2002-01-09
Oakville, ON
| said by osme  :
Was it, by any chance, a Netsky variant?
W32.Beagle
--
I stopped listening. My cornflakes stopped talking. |
|
PegLeg
Premium
join:2002-06-27
@ Sea
| reply to jpaik
Re: Surprise package in "email from "staff@cogeco.ca"
said by jpaik :
Meantime, any Cogeo tech folks care to comment. Krispy?
- »Re: [Burloak] Computer Virus Warning from Cogeco? |
|
nitzguy
Premium
join:2002-07-11
Sudbury, ON | reply to jpaik
This isn't new...
See : »[Burloak] Computer Virus Warning from Cogeco?
Regarding the Beagle variant that has been going around for some time. |
|
jpaik
join:2002-01-09
Oakville, ON | Thanks nitzguy. I haven't been to this forum in several weeks, and I missed this. Sorry all.
JP
--
I stopped listening. My cornflakes stopped talking. |
|
nitzguy
Premium
join:2002-07-11
Sudbury, ON
 ·TekSavvy Solutions..
 ·Rogers Hi-Speed
| reply to jpaik
Oh, no problem  I'd just hate to have you go through it all again for nothing.
What I would recommend doing though is pasting the info into an email and send it to security@cogeco.net and then at least Krispy and the Network Security types will have it on file. That's about all you really can do ...and of course delete the attachment...
Although I have yet to recieve this one...I did get the Netsky one a few times...but not this one yet...I wonder.. |
|
Viggen93
Premium,VIP
join:2002-04-16
Hamilton, ON
·Cogeco Cable
| reply to jpaik
Re: Surprise package in "email from "staff@cogeco.
Just from the use of English in the e-mail I smelled virus a mile away. What also makes no sense at all, is why disable e-mail access for unauthorised access? Has someone used an incorrect password to access the account? If so, then the simple username/password foiled the would be e-mail snoop. Did they use the correct password? then how does a POP server know that the person typing the username/password combo is not authorised to access the account? and if it can, why bother asking for the username/password and just skip that formality and just allow the mailsystem to decide if the password was typed by the correct person.
Damn viruses, worms, trojans, spammers and script kiddies are really bringing down the internet, and to think this used to be such a friendly neighborhood to live in |
|
bbuchanan
Premium
join:2004-02-05
Peterborough, ON
| reply to jpaik
I'd send it in to security@cogeco.net, as I think they have a standard email that they can send out to whoever had the IP at the time of the email (IP is one of Cogeco's). Just make sure that you send them the headers so they have a date/time stamp to go along with the IP. |
|
jpaik
join:2002-01-09
Oakville, ON
| said by bbuchanan :
I'd send it in to security@cogeco.net, as I think they have a standard email that they can send out to whoever had the IP at the time of the email (IP is one of Cogeco's). Just make sure that you send them the headers so they have a date/time stamp to go along with the IP.
Will do.
J.
--
I stopped listening. My cornflakes stopped talking. |
|
