[dba-Tech] new email attack vector

John Bartow jbartow at winhaven.net
Sat Aug 26 12:52:46 CDT 2017


Only if you allow it to. There are settings and the default setting is not.

-----Original Message-----
From: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] On Behalf Of Stuart McLachlan
Sent: Friday, August 25, 2017 1:07 AM
To: Discussion of Hardware and Software issues <dba-tech at databaseadvisors.com>
Subject: Re: [dba-Tech] new email attack vector

If you use a POS like Outlook, you don't need to click on anything. Outlook will automatically fetch the malicious CSS when you go to read the email.


The cure is to  use an email client  that doesn't fetch external CSS, graphics etc  unless you 
specifically tell it to for an individual email.

Like  Pegasus Mail :-)


On 24 Aug 2017 at 18:43, Susan Harkins wrote:

> So the cure is -- don't click links in email, ever... right? 
> 
> Susan H. 
> 
> 
> I thought our email and list master, Bryan, would find this most
> interesting but some of you may also:
> http://thehackernews.com/2017/08/change-email-content.html?utm_source=
> feedbu
> rner&utm_medium=feed&utm_campaign=Feed%3A+TheHackersNews+%28The+Hacker
> s+News +-+Security+Blog%29&_m=3n.009a.1564.kp0aof74zx.xtk
> 

_______________________________________________
dba-Tech mailing list
dba-Tech at databaseadvisors.com
http://databaseadvisors.com/mailman/listinfo/dba-tech
Website: http://www.databaseadvisors.com



More information about the dba-Tech mailing list