[EDIT: after looking at the original link inside the link lol.. correct me if i interpereted this wrong, those types of embeded scripts need you to open the PNG in a webbrowser to have there desired affect?, and it appears this could apply to any image format its just happened to be a PNG the original blogger was refering to in his senario ]
strange, I just received a spam messege in one of my gmail accounts with an attached .png ,of course i did not open the image .. however..
.. stranger still, i almost never receive spam, tho there could be tones of spam In gmails /spam directory, I never know because i never use anything to access it just an email client through pop
.. stranger yet, this account that the spam showed up on, is not old and I had Not emailed anyone with it. my first assumption would be that they got the gmail accn address by seeing which new accn names failed due to it already being taken?
the email name i used was short with just letters. wasn't going to be used for anything important thats why i made it memorable. all my other accn names arn't as short and not as memorable, and did not recieve any such spam in the inbox.
I recieved 2 messages, first one was strange in the fact that the spammer had apparently went to lengths to try and message my account with an email account domain generally used in the country of origin which they thought i was from due to the email name... along with country of origin references due to where they thought i was.. They would of been correct assuming by name only but were Way Off lol. The 2nd message was dated 2days later from a random domain... very spammy looking no message etc just a general title trying to make someone think the attached PNG was a file for a claim.
what about JPG, GIF, etc... does this mean most such image formats will be compromised if not already? or are such exploits limited to PNG at the moment for whatever reasons?
i would of switched from gmail already, just havn't figured out yet if theres an actual practical free alternative.. as in one free provider being just as useless as another free provider, so if using a free provider no point in switching to another free provider?