Spyware Sucks
“There is no magic fairy dust protecting Macs" – Dai Zovi, author of “The Mac Hacker’s Handbook"

Bigpond phish

March 25th 2012 in Uncategorized

This email is NOT from Bigpond.

image

Interestingly it seems to have been sent to the @bigpond.com email recipient using a compromised @bigpond.com user account.

image

The source IP address, 180.215.155.152, is in India.

image

If you reply to the email, your email actually goes to webaccountdept@w.cn:

image

w.cn is registered to Xiamen Yi Network Technology Co., Ltd.

The email that I received is dated 22 February 2012; as at 4 March 2012 they were still being seen.

The same reply to address is also being used for a Lottery Scam email.


Comments are closed.

Thank you to the source – you know who you are adpointroll.com – 85.93.18.197 adsturn.com – 85.93.18.198 adsvirginmobileusa.com – 85.93.18.200 advirginmobileusa.com – 85.93.18.200 advirginmobileusainc.com – 85.93.18.200 best-serving.com – 85.93.18.202 convertro.net – 85.93.18.201 cpmtrack.net ctrtrack-15.com – 85.93.18.198 daviselenserver.com – 85.93.18.194, 85.93.18.201 d1openx.com – 85.93.18.208 […]

Previous Entry

Just saying…   The only way to get rid of the darned thing is to fire up Task Manager and shut down the HPWUCli.exe process (sigh)

Next Entry

Archives