lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: Fri, 13 Apr 2007 10:25:43 -0400 From: <neal.krawetz@....hush.com> To: "Saeed Abu Nimeh" <sabunime@...il.com> Cc: full-disclosure@...ts.grok.org.uk Subject: Re: Spam is funny! -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Yes, it's interesting to find that attacks of all sorts (spam, phishing, and infiltration) are becoming targeted now. Previously, attacks were unsophisticated and limited to the unsecured, random hosts that were vulnerable to dropstatd. Now it seems these attackers are catching up and developing slightly more sophisticated tools for everything. I fear we are entering a brave new world of information security, and we need to worry about the next generation of threats. - - neal http://www.hackerfactor.com/blog/ On Thu, 12 Apr 2007 20:54:03 -0400 Saeed Abu Nimeh <sabunime@...il.com> wrote: >good find. i think the same thing applies to ebay users. i have >seen >some phishing mailers that look for ebay userIDs in ebay listing >pages >and send bulk emails to these userids attached to famous email >domains >like yahoo, hotmail, aol, etc. This means that if you've never >used ebay >it is less likely that you will receive an ebay scam. >Thanks, >Saeed > >neal.krawetz@....hush.com wrote: >> In my last article at Security Focus, I mentioned that phishing >is >> directed (based on your online profile) and not blast-o-gram >> (everyone gets one). My example used Arizona. I said: >> >> For example, if you are likely in Arizona then you are more >> likely to receive an Arizona Credit Union phish. They can guess >> where you are based on the forums you use. If you post in a >Tucson >> forum or write about Flagstaff and Phoenix, then you might be in >> Arizona. >> >> >> Well, the email address associated with that article just >received >> an Arizona State Credit Union phish. It had never received one >of >> those before. >> >> Man, spammers are predictable and funny. >> >> - Dr Neal Krawetz, PhD >> Author of "Yggdrasil Linux Unleashed" and "Other Stupid Shit" > >-- >Click for free info on Hollywood careers and quit your boring job >http://tagline.hushmail.com/fc/CAaCXv1I4towGaUULqchcd3HA37FooZr/ > > >_______________________________________________ >Full-Disclosure - We believe in it. >Charter: http://lists.grok.org.uk/full-disclosure-charter.html >Hosted and sponsored by Secunia - http://secunia.com/ -----BEGIN PGP SIGNATURE----- Note: This signature can be verified at https://www.hushtools.com/verify Version: Hush 2.5 wpwEAQECAAYFAkYfknsACgkQDpFP8dW5K4Y6UgQAj0hLKY3Q0u2lrAkRu9rAQm/l8z7j vyPL8dz2Q3LpvHndQxvIn728FDS02uI5bIanPOlHbIkHIOD0hrGjNIjdHCN/Zxn9ZGO2 is9EAQOfn6CNtV5GzNHRw6T5/3lgKOu+duvCS4uUdAX/Vy4n5+x1DIb2r23jWYwP7A6z NXmddG0= =ATPo -----END PGP SIGNATURE----- -- Click to lower your debt and consolidate your monthly expenses http://tagline.hushmail.com/fc/CAaCXv1QPROIIkarOB2vKnhtK0un5Esh/ _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists