S
Sean O
Hi,
We've recently been hit with a deluge of "VML spam" -- a message that:
- comes from a random name, random email address, and random (usually
misspelled) subject so it can't be filtered
- is completely tag-based, again, preventing keyword filtering
- and uses VML to display the message versus traditional embedded or <IMG
SRC>'d graphics
- example code:
<v:textpath on="t" fitshape="t" />
<v:handles>
<v:h position="#0,bottomRight" xrange="6629,14971" />
</v:handles>
- is somehow able, since it's based on a MS "schema" to send beacons back to
the mothership upon viewing (!!)
Googling around showed a few security advisory notices about this from May
of last year. But we're fully patched, and getting hit with dozens of these
a day.
Has anything been done to remedy this?
We've recently been hit with a deluge of "VML spam" -- a message that:
- comes from a random name, random email address, and random (usually
misspelled) subject so it can't be filtered
- is completely tag-based, again, preventing keyword filtering
- and uses VML to display the message versus traditional embedded or <IMG
SRC>'d graphics
- example code:
<v:textpath on="t" fitshape="t" />
<v:handles>
<v:h position="#0,bottomRight" xrange="6629,14971" />
</v:handles>
- is somehow able, since it's based on a MS "schema" to send beacons back to
the mothership upon viewing (!!)
Googling around showed a few security advisory notices about this from May
of last year. But we're fully patched, and getting hit with dozens of these
a day.
Has anything been done to remedy this?