[nsp-sec] AOL "phisingreport" ?
Ross, Jason
Jason.Ross at GlobalCrossing.com
Mon Feb 25 23:59:40 EST 2008
> -----Original Message-----
> From: William Salusky [mailto:william.salusky at aol.net]
> Sent: Monday, February 25, 2008 11:21 PM
> To: Ross, Jason
> Cc: NSP-SEC List
> Subject: Re: [nsp-sec] AOL "phisingreport" ?
>
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Jason,
>
> It is certainly bogus in respect to having any authority with AOL for
> sending an operational abuse report. If you send along the message
> body with complete headers, I can apply the "justifiable" account nuke
> from orbit.
>
> I would however be a little suspicious of the target host that was
> reported. This has the earmark of being a scammer vs. scammer host
> takedown operation to do away with competition. The reported host
> could very well be that 'bad' apple as reported.
>
Agreed. From that POV I'm treating this the way I would any other report
of a non C&C rogue IRC server and ignoring the AOL spoof factor.
Network security requires a "split brain" more often than not these days
unfortunately ;-)
--
Jason
More information about the nsp-security
mailing list