Temporary Shellshock Restrictions

I have turned off comments on this blog for the present till the new Shellshock vulnerability is completely assessed and thoroughly patched. WordPress is based on PHP, and uses shell calls. I don’t know that WordPress comments are vulnerable to exploitation of this bug, but until I’m sure we won’t take that chance. Thank you for your patience!

Regus Finland still spamming

Regus still spamming, still through Edatis, still using purchased lists.

Spamming IP: 83.136.212.5
Read more…

How to hijack social media accounts without any hacking required

Facebook, LinkedIn, Twitter and any number of smaller social networks we don’t even know all seem to suffer from the same problem: ignoring the fact that domains cease to exist.

Only just today, I’ve spotted mail from LinkedIn to many accounts in over a dozen spamtrap domains. Twitter likewise, and Facebook, even more. I imagine that having control of these email addresses, I could “reset password” in all of those accounts if I wanted to, and therefore gain control over most of them (if they aren’t using two-factor authentication, such as that LinkedIn offers). How is this in the interest of the social networks or the account owners?

EmailVision: Continuing the Payday Loan Spam Tirade

As mentioned on this site earlier, EmailVision now seems to be one of the ESPs of choice for the payday loan spam industry.

Read more…

Easy Glove: Emailing a Purchased List

Golfing accessories maker Easy Glove emailed a long-closed personal email address of mine today with an advertisement for custom golfing gloves. An advertisement in French. I don’t speak French. And I don’t play golf and never have. The ESP was Emailvision, a reasonably responsible French ESP that was bought out by cloud marketing company SmartFocus a couple of years ago.

Read more…

Does CAN-SPAM Have Teeth?

“It does have teeth; it keeps them in a glass by the bed.”
                                                                           — Mickey Chandler, Spamtacular

‘Nuff said. ;)

Targeted Victory: Emailing a Dirty List Again

Targeted Victory, a U.S. political campaign organization, is emailing several of my spamtraps. Most are typotraps: pristine spamtraps that are similar enough to the domain names of large ISPs or companies that they receive a great deal of misdirected email. The email was sent through ESP and marketing automation specialist Silverpop, which was recently acquired by IBM.

Read more…

New Finnish spam list vendor: yritysguru.fi

The self titled “Business Guru” (www in Finnish, www in English at alternate domain) is selling the standard fare, B2B spam lists. The yritysguru.fi domain is registered to Mikael Suominen as a private person. The finnishcompanyregistry.com domain is WhoisGuard Protected. The actual hosting of both is cloaked by CloudFlare.
Read more…

Virtual Telecare Inc.: Spamming a Purchased List

Staffing company Virtual Telecare Inc., doing business as Appointment Guarantee, today offered virtual staffing services in the Philippines to every email address that ever existed at an American real estate brokerage. Unfortunately for Virtual Telecare, the company in question went bankrupt several years ago. The email was sent through SMTP relay service SMTP.com.

Read more…

Go back to top