Hi List Yesterday we noticed our email abuse counter measures having a busy day.
It always started with a successfull SMTP auth and an email sent with Subject SMTP Ripper | Valid SMTP Found or SMTP Cracker User-ID Num: [HEX-STRING] sent to different gmail.com address. Shortly after multiple source IP attempted to start sending spam or phishing email - almost immediately triggering our countermeasures. I am a bit surprised that so many customers suddenly fall for phishing emails. I more suspect the victims use the emailaddress with SAME password for authentication with some other services which were victim of the recent huge data breaches? -- Mit freundlichen Grüssen -Benoît Panizzon- @ HomeOffice und normal erreichbar -- I m p r o W a r e A G - Leiter Commerce Kunden ______________________________________________________ Zurlindenstrasse 29 Tel +41 61 826 93 00 CH-4133 Pratteln Fax +41 61 826 93 01 Schweiz Web http://www.imp.ch ______________________________________________________ _______________________________________________ mailop mailing list [email protected] https://list.mailop.org/listinfo/mailop
