[nsp-sec] verification of phish by spammers
SURFcert - Peter
p.g.m.peters at utwente.nl
Thu Nov 8 08:26:41 EST 2012
Hi,
It apperas a spammer using a phished accounnt to spam first checks
whether mail delivery works. We have seen a number of cases where the
spammer uses the compromised account to sent e-mail to a couple of
addresses. A few minutes after that the big run is started.
Is it wise to publish the test addresses so they can be removed by the
providers?
--
Peter Peters /------\ SURFnet bv
SURFcert | SURF | cert.surfnet.nl
cert at surfnet.nl \-----\ \-----\ Postbus 19035
PGP Key ID 0x5A52C966 | CERT | NL-3501 DA Utrecht
+31 30 2305 305 \------/ fax: +31 30 2305 329
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 455 bytes
Desc: OpenPGP digital signature
URL: <https://puck.nether.net/mailman/private/nsp-security/attachments/20121108/fe37e541/attachment-0001.sig>
More information about the nsp-security
mailing list