Folks:
Re the recent surge of paypal frauds apparently sent via the legit paypal
infrastructure...
I've started getting these too so I have some samples to work with, and
I'm adding some rules to try to detect them based on those, but I don't
regularly use paypal so my ham corpus for paypal messaging is somewhat
thin.
As they are abusing the legit paypal infrastructure the distinction
between legit and fraud as far as analysis goes will potentially be
difficult.
If possible, we should be ensuring that there is a good amount of *legit*
paypal messaging in our ham corpora so that the rule evaluations are less
FP-prone.
If you can do anything to increase the number of legit paypal messages in
your ham corpus, please do so...
Thanks!
--
John Hardin KA7OHZ http://www.impsec.org/~jhardin/
[email protected] pgpk -a [email protected]
key: 0xB8732E79 -- 2D8C 34F4 6411 F507 136C AF76 D822 E6E6 B873 2E79
-----------------------------------------------------------------------
Users mistake widespread adoption of Microsoft Office for
the development of a document format standard.
-----------------------------------------------------------------------
Tomorrow: The 83rd anniversary of Pearl Harbor
