Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security FullDisclosure
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Full-disclosure] Spam is funny!

from [neal.krawetz] Network Security [Permanent Link]
Subject: Re: [Full-disclosure] Spam is funny!
Date: Fri, 13 Apr 2007 10:25:43 -0400 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Yes, it's interesting to find that attacks of all sorts (spam,
phishing, and infiltration) are becoming targeted now.  Previously,
attacks were unsophisticated and limited to the unsecured, random
hosts that were vulnerable to dropstatd.  Now it seems these
attackers are catching up and developing slightly more
sophisticated tools for everything.

I fear we are entering a brave new world of information security,
and we need to worry about the next generation of threats.

- - neal

http://www.hackerfactor.com/blog/

On Thu, 12 Apr 2007 20:54:03 -0400 Saeed Abu Nimeh
<sabunime@gmail.com> wrote:

good find. i think the same thing applies to ebay users. i have
seen
some phishing mailers that look for ebay userIDs in ebay listing
pages
and send bulk emails to these userids attached to famous email
domains
like yahoo, hotmail, aol, etc. This means that if you've never
used ebay
it is less likely that you will receive an ebay scam.
Thanks,
Saeed

neal.krawetz@mac.hush.com wrote:

In my last article at Security Focus, I mentioned that phishing

is

directed (based on your online profile) and not blast-o-gram
(everyone gets one). My example used Arizona. I said:

    For example, if you are likely in Arizona then you are more
likely to receive an Arizona Credit Union phish. They can guess
where you are based on the forums you use. If you post in a

Tucson

forum or write about Flagstaff and Phoenix, then you might be in
Arizona.


Well, the email address associated with that article just

received

an Arizona State Credit Union phish. It had never received one

of

those before.

Man, spammers are predictable and funny.

- Dr Neal Krawetz, PhD
Author of "Yggdrasil Linux Unleashed" and "Other Stupid Shit"


--
Click for free info on Hollywood careers and quit your boring job
http://tagline.hushmail.com/fc/CAaCXv1I4towGaUULqchcd3HA37FooZr/


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

-----BEGIN PGP SIGNATURE-----
Note: This signature can be verified at https://www.hushtools.com/verify
Version: Hush 2.5

wpwEAQECAAYFAkYfknsACgkQDpFP8dW5K4Y6UgQAj0hLKY3Q0u2lrAkRu9rAQm/l8z7j
vyPL8dz2Q3LpvHndQxvIn728FDS02uI5bIanPOlHbIkHIOD0hrGjNIjdHCN/Zxn9ZGO2
is9EAQOfn6CNtV5GzNHRw6T5/3lgKOu+duvCS4uUdAX/Vy4n5+x1DIb2r23jWYwP7A6z
NXmddG0=
=ATPo
-----END PGP SIGNATURE-----

--
Click to lower your debt and consolidate your monthly expenses
http://tagline.hushmail.com/fc/CAaCXv1QPROIIkarOB2vKnhtK0un5Esh/


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Full-disclosure] Spam is funny!, neal.krawetz
Next by Date:  Re: [Full-disclosure] Spam is funny!, neal.krawetz
Previous by Thread:  Re: [Full-disclosure] Spam is funny!, neal.krawetz
Next by Thread:  Re: [Full-disclosure] Spam is funny!, neal.krawetz
Indexes:  [Date] [Thread] [Top] [All Lists]