[NMLUG] Trojan Horse scam on RedHat

[aaron at boim.com (Aaron NMLUG)]

Looks like there is a trojan horse scam being
perpetrated on RedHat users.
Please note that any REAL RedHat security alerts
are sent from the address secalert@redhat.com, and
are digitally  signed by GPG.

Thanks to the NMLUG member who forwarded this advisory to me...

> There is currently a phishing scam being sent to many people on the
> internet that their Red Hat/Fedora machine has a vulnerability. The
> email has links to a non-redhat site  and asks the user to install a
> root-kit via 'make' and some other commands.
>
> These links are pointing to trojan horses and also gathering
> information  from users....
>
> Here is the official work from RedHat about these e-mail's.  This is
> found at http://www.redhat.com/security/
>
> -------------------------
> 23rd October 2004
>
> Red Hat has been made aware that emails are circulating that pretend to
>  come from the Red Hat Security Team. These emails tell users to
> download  and install malicious updates. These trojan updates contain
> malicious  code designed to compromise the systems they are run on.
> Official  messagesfrom the Red Hat security team are never sent
> unsolicited, are  always sent from the address secalert@redhat.com, and
> are digitally  signed by GPG. All official updates for Red Hat products
> are digitally  signed and should not be installed unless they are
> correctly signed and  the signature is verified. For more details see
> http://www.redhat.com/security/team/key.html.
>...
-- 
Aaron Birenboim        | I have an inferiority complex
Albuquerque, NM        |   ... but its not a very
aaron_at_birenboim.com |       good one.
>http://aaron.boim.com |