Security Basics mailing list archives
Re: Domain HiJacking by SPAMMERS
From: "Ho Chaw Ming" <chawming () pacific net sg>
Date: Sat, 31 Jan 2004 04:53:41 +0800
This is useless in most cases. In ours, it's basically sent from hundreds or more compromised PCs ranging from Russia, to Europe to US, to Asia. Spammers are adapt are covering their tracks. regards ----- Original Message ----- From: "Jude Naidoo" <jude007 () jnaidoo fsnet co uk> To: "Bryan S. Sampsel" <bsampsel () libertyactivist org>; <saliskor () cyberus ca> Cc: <security-basics () securityfocus com> Sent: Saturday, January 31, 2004 2:35 AM Subject: Re: Domain HiJacking by SPAMMERS The only thing you can do is , as Bryan mentioned, find out via whois what the originating IP is and contact their ISP. Then stay on the ISP's case until you get some sort of details on the user, if they will let you have it. If you do get an email address for the spammer, send them some hate-mail threatening legal action. It's also good to find out exactly which country the ISP is in and find out what the local law is concerning this kind of problem. Jude ----- Original Message ----- From: "Bryan S. Sampsel" <bsampsel () libertyactivist org> To: <saliskor () cyberus ca> Cc: <security-basics () securityfocus com> Sent: Thursday, January 29, 2004 7:37 PM Subject: Re: Domain HiJacking by SPAMMERS
First, using WHOIS, find out who owns the IP blocks. Then, start hounding them. beyond that, I'm not sure exactly what you CAN do. But out-of-country ISPs sometimes respond real fast. Sometimes, they simply ignore you. but, it's a start. Good luck, bryan ====================================== Bryan S. Sampsel LibertyActivist.org ====================================== saliskor () cyberus ca said:A client of mine has been having serious difficulties with SPAMMERS
using
their domain name as a return address for sending spam. The Names are ficticious, of course, and only a inconvenience due to the NDRs being returned through the mail system. The most serious problem is that the subject of the SPAM could cause a major public relations problem for the company, since it is mostly online-drug sales and private enhancements being marketed. A thorough check of the mail system and tracing of the original spam messages confirm that the company's systems are not being used as
relays.
Most the the messages originate in the Far/Middle east or Europe. Any suggestions as to what can be done, or how to handle such a
situation
would definitely be appreciated. Rick--------------------------------------------------------------------------
-
Ethical Hacking at InfoSec Institute. Mention this ad and get $720 off
any
course! All of our class sizes are guaranteed to be 10 students or less. We provide Ethical Hacking, Advanced Ethical Hacking, Intrusion Prevention, and many other technical hands on courses. Visit us at http://www.infosecinstitute.com/securityfocus to get $720
off
any course!--------------------------------------------------------------------------
--
--------------------------------------------------------------------------
-
Ethical Hacking at InfoSec Institute. Mention this ad and get $720 off any course! All of our class sizes are guaranteed to be 10 students or less. We provide Ethical Hacking, Advanced Ethical Hacking, Intrusion
Prevention,
and many other technical hands on courses. Visit us at http://www.infosecinstitute.com/securityfocus to get $720 off any course! --------------------------------------------------------------------------
--
--------------------------------------------------------------------------- Ethical Hacking at InfoSec Institute. Mention this ad and get $720 off any course! All of our class sizes are guaranteed to be 10 students or less. We provide Ethical Hacking, Advanced Ethical Hacking, Intrusion Prevention, and many other technical hands on courses. Visit us at http://www.infosecinstitute.com/securityfocus to get $720 off any course! ---------------------------------------------------------------------------- --------------------------------------------------------------------------- Ethical Hacking at InfoSec Institute. Mention this ad and get $720 off any course! All of our class sizes are guaranteed to be 10 students or less. We provide Ethical Hacking, Advanced Ethical Hacking, Intrusion Prevention, and many other technical hands on courses. Visit us at http://www.infosecinstitute.com/securityfocus to get $720 off any course! ----------------------------------------------------------------------------
Current thread:
- Domain HiJacking by SPAMMERS saliskor (Jan 29)
- Re: Domain HiJacking by SPAMMERS Lars Johannesen (Jan 29)
- Re: Domain HiJacking by SPAMMERS Ho Chaw Ming (Jan 29)
- Re: Domain HiJacking by SPAMMERS sil (Jan 30)
- Re: Domain HiJacking by SPAMMERS Alejandro Flores (Jan 30)
- Re: Domain HiJacking by SPAMMERS Ho Chaw Ming (Jan 30)
- RE: Domain HiJacking by SPAMMERS David Gillett (Jan 29)
- Re: Domain HiJacking by SPAMMERS Bryan S. Sampsel (Jan 30)
- Re: Domain HiJacking by SPAMMERS Jude Naidoo (Jan 30)
- Re: Domain HiJacking by SPAMMERS Ho Chaw Ming (Jan 30)
- Re: Domain HiJacking by SPAMMERS Ed Weinberg (Jan 30)
- Re: Domain HiJacking by SPAMMERS Jude Naidoo (Jan 30)
- Re: Domain HiJacking by SPAMMERS Michele Orsenigo (Jan 30)
- <Possible follow-ups>
- RE: Domain HiJacking by SPAMMERS Shawn Jackson (Jan 30)
- RE: Domain HiJacking by SPAMMERS Bruyere, Michel (Jan 30)
- Re: Domain HiJacking by SPAMMERS Matt Atkins (Jan 30)
- Re: Domain HiJacking by SPAMMERS Ho Chaw Ming (Jan 30)