MaskedScheduler.blogspot.com was once the abandoned blog of a Fox exec who would write about past successes and current failures. It was great reading. For whatever reason, the Masked Scheduler decided to confine his prose to Twitter’s 140 characters and the blog wasn’t used anymore. Fast forward to today, and I find my RSS reader suddenly …
Continue reading ‘Masked Scheduler Blog Now with Gadgets & Electronics’ »
The SANS ISC Handler Diary is asking for your experiences with SPF. Its funny timing because i just configured SPF for my domains last night. I’d been using SPF records previously, but when I left PowWeb for Dreamhost (which changed my authoritative DNS server) I didn’t set up SPF again. I’m using Google as the …
I was going through my Cox inbox and found Viagra spam with a link to http://doc.google.com/View?id=dfpqm7ft_0tt6xhdd2. Its nothing new that spammers have been taking advantage of Google. Its just kind of annoying to me that this message was sent on October 30th, today is November 10th and the linked Viagra Google doc is still up …
http://www.washingtonpost.com/wp-dyn/content/article/2008/09/12/AR2008091201211.html?hpid=topnews In 2004 Jeremy Jaynes was convicted under Virginia’s Anti-Spam law for sending 10 million spam emails through AOL servers located in Virginia. Virginia’s Supreme Court has overturned that conviction and struck down the Anti-spam law. “The court unanimously agreed with Jeremy Jaynes’ argument that the law violates the free-speech protections of the First Amendment …
Continue reading ‘Virginia High Court Strike Down Anti-Spam Law’ »
The MessageLabs Intelligence report for August 2008 reports that spammers are using links to Flash/Shockwave files hosted on Picasa (a Google web album service). The Flash then redirects the user to the spammers site.
A couple days ago I received email from Paypal titled “New PayPal Plug-In – Shop anywhere online.” That struck me as kind of suspicious so I looked at the mail headers. The headers showed the message did originate with Paypal’s servers, and more importantly it contained a domain key (DKIM). According to Wikipedia, “DomainKeys is …
MX Logic has a writeup on US Tax Court phishing emails seen today. The email from noreply@ustaxcourt.org has a link to download “a Copy of the Order, Letter, Notice or Other Document Being Appealed”. The website was not online when checked on it.
One of my users is getting some spam that is really annoying to deal with. I’ve seen users get hit much worse (usually by backscatter) but I still think this is an interesting story to tell. The spammer typically sends 5-10 emails per day from a gmail account. Usually by the next day he’s sending …
Looks like the shoe is on the other foot. Last week I was chortling that MessageLabs was tar pitting Google in an automatic response to gmail sending out so much spam. Now some of MessageLabs IPs have been blocked by the CBL. Apparently that is rather widely used. I’ve already seen rejections from Cox and …
Continue reading ‘CBL List (partially) Blocks MessageLabs’ »
Trend Micro has a blog entry on calendar invite spam. I’ve been seeing that as well. My biggest problem is reporting the spam. How do you get headers out of a meeting invite in Outlook? If I open the msg file the user forwarded, the headers are hidden by outlook. If I look in notepad, …