[nsp-sec] Yahoo phising account
Joel Rosenblatt
joel at columbia.edu
Fri May 23 17:18:54 EDT 2008
Hi,
We found it I think .. since it didn't originate from the list, it hit 4 of our phishing patterns and got nuked.
> We refused this one yesterday. Not from the list. It hit four
> phishing patterns.
>
> sender <donald.smith at qwest.com>
> recipient <joel at columbia.edu>
> subject RE: [nsp-sec] Yahoo phising account
We are very aggressive in our phishing patterns :-)
Thanks,
Joel
--On Friday, May 23, 2008 3:21 PM -0400 Seth Hall <hall.692 at osu.edu> wrote:
>
> On May 23, 2008, at 2:46 PM, Joel Rosenblatt wrote:
>
>> I'm checking my mail system now for bounces from this list, but I
>> never saw the email with the question in it .. Seth - did you not
>> send this through the NSP list - we are filtering this phishing
>> stuff very aggressively, but stuff from NSP passes through unfiltered.
>
>
> I got it and it looks like it made it into the list archive, but for some reason it doesn't show all of the cc's.
> https://puck.nether.net/mailman/private/nsp-security/2008-May/029646.html
>
> (we have "neutral" spf records put in place now and I sent it from outside of the networks listed in the spf, maybe you're over aggressively filtering on
> spf?)
>
> .Seth
>
> ---
> Seth Hall
> Network Security - Office of the CIO
> The Ohio State University
> Phone: 614-292-9721
>
>
>
>
Joel Rosenblatt, Manager Network & Computer Security
Columbia Information Security Office (CISO)
Columbia University, 612 W 115th Street, NY, NY 10025 / 212 854 3033
http://www.columbia.edu/~joel
More information about the nsp-security
mailing list