Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

New Spam Delivery Technique

from [tony barry] Network Security [Permanent Link]
Subject: New Spam Delivery Technique
Date: Fri, 20 Jul 2007 23:20:47 +0000 
Hi list (again),

I think I didn't explain clearly first time. Its not the PDF attachment
thats new its the delivery method.

The spammer forges the sender address to anyone@mydomain.com and sends
it to doesnotexist@ligitimatecompany.com.

Ligitimate companys mailer receives the message finds the recipient is
not on its list, crafts a 'Could not deliver mail' message, Attaches the
spammers original message and sends it to anyone@mydomain.com where my
catch all account receives it because the spam filter does not reject
Mailer Daemons failed to deliver mail messages 'cause I want to know
that.

While typing this a thought has occurred to me. What would happen if I
did not have a catch all account and my mail server also rejected the
message. Would it be bounced back to Ligitimatecompany.com or to
mydomain.com? How long would this message bounce around the internet
looking for a home.

Second thought. If ligitimatecompany.com (and others) is/are receiving
messages supposedly from mydomain.com (or yourdomain.com) that have a
high spam score what is the likely hood of mydomain.com ending up on a
spammers blacklist.

Tony
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: New Spam Technique, Chinnery, Paul
Next by Date:  Re: spam/virus reporting to abuse@whereever.com, Micheal Espinola Jr
Previous by Thread:  Skype versus Jabber, Mister Dookie
Next by Thread:  Re: New Spam Delivery Technique, Ansgar -59cobalt- Wiechers
Indexes:  [Date] [Thread] [Top] [All Lists]