Larry Seltzer wrote: > SMTP AUTH cracking and using the ISP account? Not that it can't and won't be done, > but > I'm aware of no actual examples. Could you cite one please?
Correct me if I'm wrong. One worm some time ago even _asked_ users to enter their SMTP AUTH credentials. And it spread quite well. Attach a spam engine and reduce its spreading rate to stay under the AV radar as long as possible and you're set. Was it SWEN? Or one of the encrypted ZIP thingies? I can't remember but it happened. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
