March 02, 2004

Virus attack on Apache committers

Open Source
Moon after storm - early morning Mount Hamilton, California

Today I started to receive a flood of email messages like this:

From: noreply@apache.org
Date: Tue Mar 2, 2004  6:21:20 PM US/Pacific
To: ovidiu@apache.org
Subject: E-mail account security warning.
Attachments: There is 1 attachment

Hello user  of Apache.org e-mail server,

Our main mailing server will  be  temporary  unavaible for next two days, 
to continue receiving mail in these  days you have to configure  our free
auto-forwarding service.

For details see the  attached file.

The Management,
    The Apache.org team    http://www.apache.org
<Text Document.pif> attachment

This obviously looks fake, but they got me thinking after a discussion I had not long ago with Steven. Somebody is obviously targetting Apache committers. Perhaps to gain something more than simply placing a new virus on somebody's computer.

If you're an Apache committer, receive such a message and you're on Windows, be aware!

Update: I just got another message at my xemacs.org email address. So it's not only Apache. The interesting thing is whoever is behind this, is filtering the email addresses and is carefully constructing email messages very targetted to a restricted set of people. It's the first time I see this happening.

I wonder when such virus email messages will be customized on a per-user basis :(

Posted by ovidiu at March 02, 2004 08:17 PM |
 
Copyright © 2002-2016 Ovidiu Predescu.