Full Disclosure mailing list archives

RE: MS Security Bulletin doing email harvesting?

From: "Richard M. Smith" <rms () computerbytesman com>
Date: Mon, 4 Aug 2003 15:26:40 -0400

The domain m0.net is owned by Digital Impact.  They are email marketing
company.  Microsoft probably hired them to do some sort of email
marketing campaign.

The URL you ran across is for a Web bug.  Digital Impact put it in the
email message to see if the email message was ever opened.  Marketers
like to know if there messages are actually being looked at.

Sounds like the error message is coming from Outlook 2003 which has a
new Web bug blocking feature in it.  Pretty funny that Microsoft got
caught by their own security improvements. ;-)

Here's more about Web bugs and Outlook 2003:

   http://zdnet.com.com/2100-1104-964166.html

Richard

-----Original Message-----
From: full-disclosure-admin () lists netsys com
[mailto:full-disclosure-admin () lists netsys com] On Behalf Of Kyp Durron
Sent: Monday, August 04, 2003 2:17 PM
To: full-disclosure () lists netsys com
Subject: [Full-disclosure] MS Security Bulletin doing email harvesting?


I get this email today that says it's from 
windowssecurity () email microsoft com.  It looks legit so I go to forward
it 
to someone I know and Outlook 2003 pops an error message that I
attached.  I 
look at the HTML and it's trying to pull the following URL.

http://www.m0.net/m/logopen02.asp?vid=1102&catid=9707637645&ecid=0

I go to www.m0.net and it's a mass marketing site.


#################################################################
#################################################################
#################################################################
#####
#####
#####
#################################################################
#################################################################
#################################################################

#################################################################
#################################################################
#################################################################
#####
#####
#####
#################################################################
#################################################################
#################################################################
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

MS Security Bulletin doing email harvesting? Kyp Durron (Aug 04)
- RE: MS Security Bulletin doing email harvesting? Richard M. Smith (Aug 04)
- <Possible follow-ups>
- RE: MS Security Bulletin doing email harvesting? Schmehl, Paul L (Aug 04)