[nsp-sec] ping google/gmail
Ross, Jason
Jason.Ross at GlobalCrossing.com
Fri Mar 7 13:38:08 EST 2008
> -----Original Message-----
> From: nsp-security-bounces at puck.nether.net [mailto:nsp-security-
> bounces at puck.nether.net] On Behalf Of Brian Allen
> Sent: Friday, March 07, 2008 12:45 PM
> To: nsp-security at puck.nether.net
> Subject: [nsp-sec] ping google/gmail
>
> It is being used as a drop for a hitman scam threat we are receiving.
>
Anyone got any thoughts on what's up with these?
We started receiving notificiations about these to our abuse desk about
2 weeks ago, and they keep on coming.
Obviously the intent is to harass and/or get someone to actually pay up
(every one I've seen has had the same MO: "I've been hired to kill you
but will give you a chance to prove you want to live if you can pay me
more", so I guess what I'm really saying is, is there a common thread we
can look for to stop it? (eg. All being sent via relays that happen to
be squirrelmail, or something. I say that just because the ones I've
seen appear to have been sent by exploiting a webmail interface of some
kind.)
--
Jason
More information about the nsp-security
mailing list