[nsp-sec] psst hey buddy want a list of compromised popmail accounts:)
Smith, Donald
Donald.Smith at qwest.com
Thu Mar 27 17:53:11 EDT 2008
https://asn.cymru.com/nsp-sec/upload/1206654205.whois.txt
Here are the popmail accounts that were compromised to send SMTP spam to
the SMTP -> sms gateways.
I don't have time stamps but you probably won't need them as the vast
majority of these will not be dynamic IP addresses.
Format is as follows:
AS|IP|accountname password|ip owner.
When contacted please only tell them the account name and that that
account has been compromised and is being used to send spam. I wouldn't
mention the sms side of this.
If you want to share the password with them as proof I have no problem
with that they are mostly "joe" accounts.
H8Hz
Donald.Smith at qwest.com giac
This communication is the property of Qwest and may contain confidential or
privileged information. Unauthorized use of this communication is strictly
prohibited and may be unlawful. If you have received this communication
in error, please immediately notify the sender by reply e-mail and destroy
all copies of the communication and any attachments.
More information about the nsp-security
mailing list