The Members Forum

Members Login
Username 
 
Password 
    Remember Me  
The Member's Forum -> Computer Networking & Security Help -> Heads-Up from Xerox Services
Post Info TOPIC: Heads-Up from Xerox Services
Vindicated


Administrator / Manager

Status: Offline
Posts: 2410
Date:
Heads-Up from Xerox Services
Permalink   

Got this 'heads-up' today from a friend at NASA:
Technical Monitors:
 
Last summer, hackers began ‘spoofing’ scan to email messages from Xerox devices.
They’ve changed their tactics a bit and it’s important to make your users aware of this issue.
 
Here’s Xerox official communication on www.xerox.com/security <http://www.xerox.com/security>
 
January 20, 2011 - Xerox has received more inquiries about “Scanned from a WorkCentre Pro” malware in e-mailed PDF files – Malware Alert
As a variant to the SPAM alert we posted last summer, customers are now receiving e-mails that appear to be notifications that an e-mail containing a PDF file could not be delivered. During last summer, files that had the file extension of .ZIP or .EXE were sent and those formats are not supported by Xerox devices. The danger is that now, the attachments are PDF files which are supported as a valid scan format from Xerox WorkCentre devices. The mail notes may look like a realistic “bounce” message from a Mail Transfer Agent. Being aware of which MTA you or your company uses could help in identifying fake notes.

Users are tempted to open the PDF file with the phrase, “Please open the attached document. It was scanned and sent to you using a XER0X Work Centre Pro.”

Xerox advises all users to only open scan to e-mail files that are sent from a reliable, identifiable, and verifiable source. The other key way to determine if this is a scam e-mail, versus real, is that the “From” field of the spam e-mail will mimic an actual user’s e-mail address, as opposed to a machine name e-mail (i.e. wcp245@xerox.com). These files could contain a number of Oficia Trojan variants or some of the more recent PDF malware code.

Customers with questions should contact their local Xerox sales representative, or call 1-800-ASK-XEROX.

Please contact me if you have questions!
 
Holly
 
Holly Turner, PMP
Security +, Certified Lean Six Sigma Black Belt
Xerox Services
800 Phillips Road, B209-08A
Webster, NY 14580 USA
p 585.427.3803  (8*227.3803)
f 585.422.5219



__________________

Vindicated th_Worm.gif
Page 1 of 1  sorted by
 
Quick Reply

Please log in to post quick replies.
The Member's Forum -> Computer Networking & Security Help -> Heads-Up from Xerox Services
Tweet this page Post to Digg Post to Del.icio.us


Create your own FREE Forum
Report Abuse 		Powered by ActiveBoard