funsec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Growth in "enlargement" spam getting bigger

From: <michael.blanchard () emc com>
Date: Fri, 8 Jun 2012 14:18:27 -0400
LOL, did you piss off anyone in the list lately?  Maybe someone signed your email address up for the bigger and better 
spam?  

Michael P. Blanchard
Senior Security Engineer, CISSP, GCIH, CCSA-NGX, MCSE
Office of Information Security & Risk Management
EMC ² Corporation
32 Coslin Drive
Southboro, MA 01772


-----Original Message-----
From: funsec-bounces () linuxbox org [mailto:funsec-bounces () linuxbox org] On Behalf Of Rob, grandpa of Ryan, Trevor, 
Devon & Hannah
Sent: Friday, June 08, 2012 2:56 PM
To: funsec () linuxbox org
Cc: infosecbc () yahoogroups com
Subject: [funsec] Growth in "enlargement" spam getting bigger

Over the past few days I've been busy with Flame (and MD5) and LinkeDin (and 
SHA-1) (and I've also noticed more than a few people confusing the significance 
of the two protocols), so it was only this morning that I realized I've seen a rise, if 
you will, in a certain type of spam.

As a matter of fact, other variants of spam seem to be stable, if not slightly down. 
 But there has been a big jump, provided as a free trial, in this one category.

It could be that the spammers are taking pity on me, noting that I need help 
attracting the attention of the other 50% of the population.

Looking closer, all the messages appear to be built on the same outline.  The 
subject lines (and most of the "From:" lines) all note "free," "trial," "sample," 
"enlargement," "BIGGER," and a certain body part.  The body of the message 
seems to promise pornography, if you visit a certain Website.  The Website 
names appear to be two word compounds, related to pornography, frequently 
mispelled (probably deliberately).  The Website, regardless of domain name, is 
always the same.  (At least now it advertises "American's Top Supplements" 
instead of pretending to be a Canadian pharmacy.)

Oddly, this huge surge is only on one of my accounts: the others seem to be 
running at normal levels.  This may be due to the fact that it's the account I use to 
post from most frequently.)

======================  (quote inserted randomly by Pegasus Mailer)
rslade () vcn bc ca     slade () victoria tc ca     rslade () computercrime org
Literature is the art of writing something that will be read
twice; journalism what will be read once.           - Cyril Connolly
victoria.tc.ca/techrev/rms.htm http://www.infosecbc.org/links
http://blogs.securiteam.com/index.php/archives/author/p1/
http://twitter.com/rslade
_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.
Previous By Date Next
Previous By Thread Next

Current thread: