FirstClass installations an exploit target?

[James H Moore <jhmfa () RIT EDU>]

We still use FirstClass in a couple of spots, one of our users got the
following message:

- - -

 

Dear Firstclass Member, 

 

Your e-mail account was used to send a huge amount of unsolicited spam

messages during the recent week. If you could please take 5-10 minutes
out

of your online experience and confirm the attached document so you will

not run into any future problems with the online service.

 

If you choose to ignore our request, you leave us no choice but to
cancel

your membership.

 

Virtually yours,

The Firstclass Support Team 

 

- - -

Anyone else seeing this?

- - - -
Jim Moore, CISSP, IAM
Information Security Officer
Rochester Institute of Technology
13 Lomb Memorial Drive
Rochester, NY 14623-5603
(585) 475-5406 (office)
(585) 475-4122 (lab)
(585) 475-7950 (fax)

"We will have a chance when we are as efficient at communicating
information security best practices, as hackers and criminals are at
sharing attack information"  - Peter Presidio