phishing attacks against ISPs (also with Google translations)

Paul Ferguson fergdawgster at gmail.com
Wed Mar 25 16:47:26 UTC 2009


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Wed, Mar 25, 2009 at 9:02 AM, William Allen Simpson
<william.allen.simpson at gmail.com> wrote:

>
> I've not recently seen an ISP account phish here.  The last one I
> remember was circa 2003.  It was a dictionary attack, arriving at my was@
> account (long since rendered useless by spam volume and terminated).
>
> However, I don't save phish/spam anymore.  I used to save everything --
> providing many of the examples for http://fraudgallery.com/ -- nowadays,
> just daily scan for false positives, report monetary phish to the few
> ISPs that actually promptly close down bad actors, and delete the rest.
>

The only recently successful scams that I am aware of which specifically
targeted ISPs have been to obtain control of domain registrar accounts.
Whether that was accomplished via phishing,  or via some other nefarious
method, is still unclear.

- - ferg

-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.5.3 (Build 5003)

wj8DBQFJymASq1pz9mNUZTMRAiE4AKCLBejTuPz2U6fy+Tuw0cKiOoX77ACeMxrz
T+OobJm3VwvGRY/337TZrOQ=
=IQDP
-----END PGP SIGNATURE-----




-- 
"Fergie", a.k.a. Paul Ferguson
 Engineering Architecture for the Internet
 fergdawgster(at)gmail.com
 ferg's tech blog: http://fergdawg.blogspot.com/




More information about the NANOG mailing list