F-Secure reported about malware runs using fake Christmas Cards as the lure.
Example:
A Dear friend has sent you an ecard from http://www.123Greetings.com
Your ecard will be available with us the next 30 days.
…
To view your card,CLICK HERE
…
After run this ecard file x-mas.exe you got Zapchast mIRC-based backdoor.
Read more: Merry Christmas and so on
My name is Jeanne Heydecker and I am the Marketing Group Leader for 123greetings.com. Thank you for the posting about a suspicious email that appears to be from 123Greetings. We understand your concern.
The email that you received was NOT created using our system. Sometimes a “hacker” will emulate a large web site’s email format for malicious purposes. 123Greetings is in no way associated with the message or its contents.
We are aware of this issue and are investigating.I want to assure you that 123Greetings does not attempt to install viruses, malware or any other software onto a user\’s computer. It would be a very short-sighted strategy for us to do so.
If you feel that unknowingly, you have installed any spyware, malware or adware, we suggest you use the software of your choice to clean your system. I personally use SpyBot Search and Destroy (http://www.safer-networking.org/en/index.html); other people in my office also use Ad-Aware (http://www.lavasoftusa.com/products/ad_aware_free.php). Please note that neither of these products is in any way affiliated to 123Greetings.com.
We hope you find these suggestions helpful and look forward to having you on our site more often.
Something is wrong with 123Greetings thats 4 sure.
BT Home DNS server returns one IP for the domain and OpenDNS, Googles DNS all report others and they use this ploy on many other spyware/malware servers.
seems to me that ISP’s and name servers are getting paid more by the spyware sites than they are getting from us normal users and the whole industry needs sorting out, big TIME.