|
Scrap File Vulnerabilities
If I told you that it is really easy to make an executable file like a trojan server look like a txt file and show any file extension after its name you would probably laugh at me . Its true though .
Scrap files are the name of these files and they are created when an executable file is dragged and dropped onto windows WordPad then copied and pasted onto desktop . The file will still be the same exe file but its appearance would have changed to a file that looks similar to a txt file and it is now named scrap . Even if you have chosen the option in windows that allows you to see the extensions of files , the file will not show its real extension after its name and when you right click on it and look in its properties it will have the extension .shs
The problem gets worse , the icon is easily changed on these types of files allowing hackers to actually make it look like a image file like a .jpg and call it a .jpg file when really it is an executable file .
Fixes :
There is no easy fix for this that I know of , but if you use mIRC a lot you could choose to not accept any files with the extension .shs , and when you do receive a file from someone make sure that in the files properties that it doesn't say .shs if it does the file isn't what it is supposed to be and you have been tricked , do not double click on the file and delete it immediately .
|
|
