[nsp-sec] Gmail phishing box and cwpanama.net phished account
Chris Morrow
morrowc at ops-netman.net
Fri Feb 6 10:06:14 EST 2009
thanks, sent along to the abuse folks.
On Fri, 6 Feb 2009, SURFcert - Peter wrote:
> ----------- nsp-security Confidential --------
>
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Hi,
>
> We are receiving a phishing attack which uses
> helpdesk.service1 at gmail.com as the drop box:
>
> The mail seems to be from a phished user at cwpanama.net:
>
> Received: from [41.220.75.3] (account tulymag at cwpanama.net)
> by backend1.cwpanama.net (CommuniGate Pro WebUser 4.2.10)
> with HTTP id 22825191; Fri, 06 Feb 2009 03:01:01 -0500
>
> - --
> Peter Peters
> SURFcert Officer off Duty
> cert at surfnet.nl http://cert.surfnet.nl/
> office-hours: +31 302 305 305 emergency (24/7): +31 622 923 564
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.2 (MingW32)
> Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
>
> iD8DBQFJjBRNelLo80lrIdIRAqSaAJ9pOWKhMUQN/uZtZvPtmpqQfXSAxwCfbwkq
> +lyXpCW2jNT/g5nvYDRzhPQ=
> =4Wso
> -----END PGP SIGNATURE-----
>
>
> _______________________________________________
> nsp-security mailing list
> nsp-security at puck.nether.net
> https://puck.nether.net/mailman/listinfo/nsp-security
>
> Please do not Forward, CC, or BCC this E-mail outside of the nsp-security
> community. Confidentiality is essential for effective Internet security counter-measures.
> _______________________________________________
>
More information about the nsp-security
mailing list