An Example Email of Someone Trying to Exploit the Confusion Caused by the Recent Heartbleed SSL vulnerability

Written by James McDonald

April 30, 2014

Just saw this in my inbox. An email saying I need to change my SSL cert and a link to ‘new’ cert.

Screenshot of the email:


If you Download the and unzip it you get a “logmein_ssl_certificate.pif: PE32 executable (GUI) Intel 80386, for MS Windows”

Fortunately before you get to download the zip file you get a nice big warning page from the Cloudfare CDN saying it’s a fishing site. So you would have to be stupid (or in my case curious) to continue.






Submit a Comment

Your email address will not be published. Required fields are marked *

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

The reCAPTCHA verification period has expired. Please reload the page.

You May Also Like…

Clear HSTS Settings in CHrome

Open chrome://net-internals/#hsts enter the domain in the query field and click Query to confirm it has HSTS settings...

Ubuntu on Hyper-v

It boils town to installing linux-azure # as root or sudo apt-get update apt-get install linux-azure...