Security Incidents mailing list archives
Re: Threat mail from russia (followup)
From: "Bryan Allerdice" <bryan () professionalhacker com>
Date: Wed, 27 Jun 2001 20:46:37 -0400
FYI: There is an article on this email on Security News Portal (http://www.securitynewsportal.com/print.php?sid=878). The article says that SecurityWatch believes that this email may contain a password capturing program of some sort. Security News Portal feels that this claim is bogus. Perhaps Bjorn Djupvik <Bjorn.Djupvik () globalone net> (who was the first to report the email to this list) can look at the source of the actual message his client received and put this claim to rest - password capturer or not. Personally I hate when some news provider makes claims without backing them up, since a few weeks later when CNN or someone gets wind of it, we'll have to listen to scary news stories about evil Russian hackers who are doing billions of dollars of damage or something. Agghhhhh. BRYAN ----- Original Message ----- From: "Justin Kremer - CEO" <ceo () investigateintl com> To: <incidents () securityfocus com> Sent: Tuesday, June 26, 2001 3:54 PM Subject: Re: Threat mail from russia (followup)
If you receive an e-mail like this, the FIRST thing to do is contact the bank given in the e-mail. Let them know that their client is involved in mail fraud. Secondly, I would use the mail header and contact the
sender's
ISP. Should take a whole 10 minutes out of your busy day and hopefully will
teach
this guy a lesson. -Justin Kremer CEO - Investigate Int'l ----- Original Message ----- From: "Bjorn Djupvik" <Bjorn.Djupvik () globalone net> To: <incidents () securityfocus com> Sent: Tuesday, June 26, 2001 2:03 AM Subject: Re: Threat mail from russia (followup)After doing some research I have come to the conclusion that this isprobably all a scam and not targeted at my clientdirectly. The reasons why I believe this is that when doing a search onvarious search engines for the account# mentionedin the mail, I get hits on various other schemes which probably also arescams (like this one:http://love.lorton.com/html/payment.html) . We will however be watchingthat network extra closely from now on though :)/bjorn This list is provided by the SecurityFocus ARIS analyzer service. For more information on this free incident handling, management and tracking system please see: http://aris.securityfocus.com--------------------------------------------------------------------------
--
This list is provided by the SecurityFocus ARIS analyzer service. For more information on this free incident handling, management and tracking system please see: http://aris.securityfocus.com
---------------------------------------------------------------------------- This list is provided by the SecurityFocus ARIS analyzer service. For more information on this free incident handling, management and tracking system please see: http://aris.securityfocus.com
Current thread:
- Re: Threat mail from russia (followup) Bjorn Djupvik (Jun 26)
- Re: Threat mail from russia (followup) Justin Kremer - CEO (Jun 27)
- Re: Threat mail from russia (followup) Bryan Allerdice (Jun 28)
- Re: Threat mail from russia (followup) jeff keith (Jun 28)
- Re: Threat mail from russia (followup) //Stany (Jun 28)
- Re: Threat mail from russia (followup) Vitaly Osipov (Jun 28)
- Re: Threat mail from russia (followup) Justin Kremer - CEO (Jun 27)