phishing attacks against ISPs (also with Google translations)
Paul Ferguson
fergdawgster at gmail.com
Wed Mar 25 16:47:26 UTC 2009
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Wed, Mar 25, 2009 at 9:02 AM, William Allen Simpson
<william.allen.simpson at gmail.com> wrote:
>
> I've not recently seen an ISP account phish here. The last one I
> remember was circa 2003. It was a dictionary attack, arriving at my was@
> account (long since rendered useless by spam volume and terminated).
>
> However, I don't save phish/spam anymore. I used to save everything --
> providing many of the examples for http://fraudgallery.com/ -- nowadays,
> just daily scan for false positives, report monetary phish to the few
> ISPs that actually promptly close down bad actors, and delete the rest.
>
The only recently successful scams that I am aware of which specifically
targeted ISPs have been to obtain control of domain registrar accounts.
Whether that was accomplished via phishing, or via some other nefarious
method, is still unclear.
- - ferg
-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.5.3 (Build 5003)
wj8DBQFJymASq1pz9mNUZTMRAiE4AKCLBejTuPz2U6fy+Tuw0cKiOoX77ACeMxrz
T+OobJm3VwvGRY/337TZrOQ=
=IQDP
-----END PGP SIGNATURE-----
--
"Fergie", a.k.a. Paul Ferguson
Engineering Architecture for the Internet
fergdawgster(at)gmail.com
ferg's tech blog: http://fergdawg.blogspot.com/
More information about the NANOG
mailing list