Welcome to WebmasterWorld Guest from 54.158.248.167

Forum Moderators: incrediBILL & lawman

Featured Home Page Discussion

Spambot Harvests 711 million e-mail Addresses to Send Through Legitimate SMTP Servers

     
4:32 pm on Aug 30, 2017 (gmt 0)

Administrator from GB 

WebmasterWorld Administrator engine is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month Best Post Of The Month

joined:May 9, 2000
posts:24526
votes: 577


Apparently, the bot has harvested more than just the-mail addresses, but also the legitimate SMTP servers.

This looks more of a challenge to block, and may result in many more legitimate and innocent sites getting blacklisted.

Those credentials are crucial for the spammer's large-scale malware operation to bypass spam filters by sending email through legitimate email servers.

The spambot, dubbed "Onliner," is used to deliver the Ursnif banking malware into inboxes all over the world. Spambot Harvests 711 million e-mail Addresses to Send Through Legitimate SMTP Servers [zdnet.com]
2:57 am on Aug 31, 2017 (gmt 0)

Moderator from US 

WebmasterWorld Administrator keyplyr is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month

joined:Sept 26, 2001
posts:9641
votes: 481


Typically, a spammer would send a "dropper" file as a normal-looking email attachment. When the attachment is opened, the malware downloads from a server and infects the machine.
It always depends on someone clicking on an email attachment. Who does that? (rhetorical)

Obviously enough people *do* click on email attachments from unknown senders (or spoofed accounts) to keep this delivery method successful, but it makes me really question the thinking of these people.
12:29 am on Sept 1, 2017 (gmt 0)

Senior Member from GB 

WebmasterWorld Senior Member Top Contributors Of The Month

joined:Oct 14, 2013
posts:2687
votes: 290


but it makes me really question the thinking of these people.


Dumb, totally dumb ... their social "friends" purportedly send them "stuff" and they simply do not mentally question anything ... if they were in this conversation right now, they would not comprehend why system admins have to lock so much down because of these "click every frigging link" nutters!

I'm getting to the point of ... Go buy a new system, this one is *u*c*e* when all it needs is cleaning-up, Joe Public does not deserve my assistance any more because of their own ineptitude and stupidity.
1:28 am on Sept 1, 2017 (gmt 0)

Senior Member from US 

WebmasterWorld Senior Member tangor is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month

joined:Nov 29, 2005
posts:7774
votes: 530


@engine .... some of the reports I've read regarding this trove of email addresses is it is largely fabricated (adding sales@ to domain names for example), nonsense, merges from other already known scrape dumps, etc to end up with 711m addresses. IOW, largely outdated, non-existent, and generally useless. However, that will not stop an automated scam/spamer to insert into a job list and set loose the electrons of war. (pardon the parody)
9:41 pm on Sept 3, 2017 (gmt 0)

Full Member from US 

10+ Year Member

joined:Apr 11, 2006
posts:232
votes: 16


Careful with that pic moderators, Hormel might sic their lawyers on you.
9:53 pm on Sept 3, 2017 (gmt 0)

Moderator from US 

WebmasterWorld Administrator keyplyr is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month

joined:Sept 26, 2001
posts:9641
votes: 481


Hormel Foods was upset at the use of its trademark and pursued a series of unsuccessful lawsuits between 2002 and 2007 against companies like Spam Arrest, Spambuster, and Spam Cube.

Hormel eventually gave up the litigation and embraced the spam legacy, even sponsoring the Spamalot musical in 2006.
[digitaltrends.com...]
 

Join The Conversation

Moderators and Top Contributors

Hot Threads This Week

Featured Threads

Free SEO Tools

Hire Expert Members