Results 1 to 2 of 2

Thread: Be careful when handling infected email's Source Message

  1. #1
    Join Date
    Oct 2005

    Exclamation Be careful when handling infected email's Source Message

    A spammer can use
    <STYLE> --... GARBAGE, garbage, GARBAGE ...-- </STYLE>
    section in the eMail source-message files, to confuse the laser printers with PDF creation commands, and potentially create embedded code by PDF-creator software like "ghostscript", with which they can potentially gain control of your PC hardware and peripherals including MICROPHONES, CAMERAS, and even COLLECT your DATA, package them and wait for a malicious code in a web Browsers to pick it up and deliver it to a culprit anywhere on the Internet. Indeed they can totally destroy your data and render your computer totally useless.

    You need to be careful even when printing email-message source file from any Linux GUI based text editors, in particular Gedit and/or Pluma (and I believe also any other IDE text editors) that utilize laser printers and PDF creator programs. I suggest if you need to print email-message source files, to use simple Unix pipe print facilities and filters on the command line rather than print functions built into editors to avoid triggering, into email embedded, attackers code.

    Please let me know if anybody has already reported this security risk. Usually the first and the mildest form of symptoms for such an infection show up when your laser printer drivers start behaving erratically unexpectedly, or stop working all together. Though Thunderbird mail agent most often seems to be smart enough to ignore such malicious code however it can also be affected, which shows up as misconfiguration, for instance you loose menus or menu options you've set up, or even access and proper functioning of your Enigma features including your keys. Restoring your configuration to what it should be should fix any problems. At least it so far this always worked for me.

    So be safe, and make sure you have a record of your Thunderbird configuration somewhere!

    Cheers, ubix
    Last edited by ubix; September 6th, 2019 at 05:21 PM.

  2. #2
    Join Date
    Jul 2019

    Re: Be careful when handling infected email's Source Message

    Please provide an example of this ridiculous situation.


Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts