[LINK] Phishing scams database

Howard Lowndes lannet at lannet.com.au
Thu Apr 29 17:46:17 EST 2004 

On Thu, 2004-04-29 at 17:08, Rick Welykochy wrote:
> Jan Whitaker wrote:
> 
> > The other thing making me nuts is the use of my address, or aliases for 
> > website support, that are virus infected or spams.  As far as I know, my 
> > system is completely clean.  It gets swept every day, whether it needs 
> > it or not.  Any my virus defs are updated frequently automatically.  
> > What is going on is 'friendly' advice sent to the spoofed address from 
> > those who received the spams etc. telling me my message that was 
> > infected didn't get through, thus increasing the spam on the net.  
> > <shaking head>
> 
> These are bounces from zombied Windows boxes that are sending out
> SPAM/virii. I am getting about 450 of these per day. About 90% are
> easily filtered out using a few simple rules.
> 
> Why do I get so many bounces? The SPAM virus sets a return address
> (or From: header) as <random_name>@praxis.com.au. Since I receive
> all email for that domain, I get the lot. Kinda like what (IIRC)
> Tom Worthington went through months ago when his email addr was
> fraudulently used by spammers as the sender address. I believe
> Tom's problem went away of its own accord.
> 
> Not so with this current scourge. The return bounces from SPAM
> zombies are increasing in number steadily over time.
> 
> On a more positive note, my ISP is successfully filtering out
> 100% fo SPAM sent to my domain. Too bad they can't do similar with
> the return bounces.
> 
> I have analysed a large sample of the returns .. there is no single
> heuristic one can use to get rid of them. And in my zealous filtering
> of same, I've missed a several valid bounces caused when I myself
> sent something out mis-addressed.
> 
> All of this to sell a few more bottles of \/14GRA.

Hey, some of us might need that \/!4GR4, though I don't think it goes
well with ACE Inhibitors, damn it :)

> 
> <shaking head over and over again>
> 
> 
> 
> cheers
> rickw
-- 
Howard.
LANNet Computing Associates - Your Linux people <http://www.lannetlinux.com>
------------------------------------------
Flatter government, not fatter government - Get rid of the Australian states.
------------------------------------------
To mess up a Linux box, you need to work at it;
to mess up your Windows box, you just need to work on it.
 - Scott Granneman, SecurityFocus

More information about the Link mailing list