Archive for September, 2008

Newer Entries »

Shady spammers getting more creative with links

Thursday, September 4th, 2008

It’s dawning on me that the shady emailers have no intention of dialing back their malicious messages, so I might just have to ramp of the amount of warnings I post here.  Take that “Mr. Rasim Hassan of Burkina Faso”!!!  By the way, no offense to any actual Rasim Hassans out there.  It just so happens that the most recent “claim these millions” style message came from a Rasim Hassan.

While I’m hopeful that more and more users are aware that Yahoo! lotteries asking for your personal dossier, as well as wire transfer requests to receive unclaimed fortunes, are dangerous, it could be even more important that people recognize the dangers of deceptive links in messages.

You’ve often been warned about clicking links within unexpected emails.  A common approach is to link you over to a spoofed login page to collect your password.  In the beginning scammers didn’t worry much about what the link looked like.  Once people began looking more closely at the domain in the hyperlink the scammers started creating links that looked like they pointed to one place, but when you put your mouse over them you would see that the link actually directed you elsewhere.

Now, the NY Times has reported that malicious spammers are finding new ways to make their links look more legitimate.  The latest trend is….(drumroll)….free web services!

Jeremy Kirk, in a recent story from NYTimes.com, explains:

One of the services, a photo-hosting site called ImageShack, lets people upload different types of photo formats, including Flash files, said Paul Wood, a senior analyst with MessageLabs.

Flash files, which have the extension “.swf”, can be used for animated graphics and can also be used to automatically redirect people to other Web sites. That feature can be abused.

I recommend checking out the complete story, when you have a chance.  But also remember that whenever an email directs you to a site (typically where you have an account and would need to login), you should instead visit the site via typical methods (bookmark, typing URL by hand, even a web search).  If there is something significant going on with  your account they will usually tell you when you login.  If you feel that you absolutely HAVE to click on the link in an email you should examine it closely before clicking on it!

Posted in All-New Mail, Anti-Spam, Classic Mail, General, Security | 40 Comments »

YMail is sittin’ (pretty) on Chrome … so far

Tuesday, September 2nd, 2008

http://ymailupdates.com/blog/wp-content/uploads/2008/09/chrome.pngNo, I’m not talking about a fresh set of rims for your lowriding hooptie.  News around the water cooler (as well as on our very own front page), is that our friends from just up the road have rolled out a new browser option called Chrome.  Not sure I know what went into the name choice, but at this point I’m going to assume that they are just huge Masta Ace fans and particularly loved his works from the mid 90′s.  I always felt that Ace peaked with “Born to Roll”, but that may not translate as well into a web product.

Anyway, what this means to YMail users is there is another browser being thrown into the compatibility pool.  The good news is that the Chrome development team has leveraged the open source project known as Webkit, which is also the underlying framework that Apple used for the Safari browser.  Since we have built the All-New Mail to work well with Safari (and it’s underlying Webkit framework) this first release of Chrome so far seems to provide a fairly consistent experience for Windows users (currently not available for Mac or Linux).

That being said, we still have a lot of testing to do before we can guarantee that the user experience will be consistent and reliable.  In the meantime users can always use one of the three, fully supported, browser options for both versions of YMail: Firefox, Internet Explorer, and Safari.

Posted in All-New Mail, Classic Mail, General, Mac, New Stuff | 53 Comments »

Newer Entries »