I keep saying it – DON’T CLICK ON THOSE LINKS!!!
Websense reports that bad end of town have started using the createTextRange vulnerability in an attempt to infect victims with a keylogging trojan that monitors activity on various (undisclosed) financial websites and sends the recorded information to the attacker:
http://www.websensesecuritylabs.com/alerts/alert.php?AlertID=452
Repeat after me – “I will not click on links in unsolicited emails… I will not click on links in unsolicited emails… I will not click on links in unsolicited emails…”
Got it? Good.
Note the “unsolicited” bit. You may have subscribed to an email alert service and it would be a bit silly to do that and then not use the links in the emails they send you. As for me, I’ve moved away from such things and always try to use RSS to pull down alerts from the various services I subscribe to, or I simply go to the Web site and browse:
http://www.websensesecuritylabs.com/RSSFeed.php