On Wed, Jan 19, 2011 at 5:10 PM, Fritz Borgstedt <[email protected]> wrote:
> > Hacked accounts? That are normal accounts from people with bad > intentions. How comes, that they are whitelisted in your installation? > I never had one whitelisted in my servers. > Yep, from what I can tell we get a couple a day. These are all yahoo or aol users who have been in (legitimate) communication with a person here. That's how they get into the whitelist. Then their account gets hacked (which is so easy to do sidestepping on wifi at a public wifi point where aol and yahoo use is rampant). Then the hacker sends their URL to all of the email addresses that can be found in sent and received mail and the address book. It's a clever way of doing things. What better way to get someone to open a URL than having it come from an email address of their friend? For now, these are just annoyance messages. What scares me is when they start being 0-day malware links. ------------------------------------------------------------------------------ Protect Your Site and Customers from Malware Attacks Learn about various malware tactics and how to avoid them. Understand malware threats, the impact they can have on your business, and how you can protect your company and customers by using code signing. http://p.sf.net/sfu/oracle-sfdevnl _______________________________________________ Assp-test mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/assp-test
