New adult video spam - anyone know more?

redblade7
Posts: 520
Joined: Thu Oct 31, 2013 10:18 am

New adult video spam - anyone know more?

Post by redblade7 » Fri May 15, 2015 9:53 pm

Hi,

For the past few weeks I have been receiving large amounts of spam messages which apparently have very specific characteristics:
  1. Subject is the name of a porn video, in proper English with no misspellings, occasionally with real porn star names listed (usually obscure ones).
  2. The link is usually to a hacked Wordpress site with a really good domain name, properly spelled.
  3. 95% of the time, the domain name on myWOT is listed as "Malware or viruses" based on one of the third-party lists.
  4. Some SpamCop reports which I have received a reply from have stated that there was malware on the site. However, there are no comments or anything on myWOT suggesting that these are existing legitimate Wordpress sites.
  5. SpamCop shows the domains come from a variety of different registrars and a variety of different IP addresses, implying a botnet perhaps.
  6. The plaintext portion contains snippets of what appears to be an anti-feminist book called "Iron John".
Anyone familiar with this?

EDIT: The domains are increasingly nonsense domains, guess the good ones are being shut down.
<!--break-->

MysteryFCM
Posts: 4912
Joined: Mon Jul 14, 2008 4:47 pm

RE: New adult video spam - anyone know more?

Post by MysteryFCM » Fri May 15, 2015 10:45 pm

Can you forward me the emails (with the original headers) please?

spam @it-mate.co.uk

redblade7
Posts: 520
Joined: Thu Oct 31, 2013 10:18 am

RE: New adult video spam - anyone know more?

Post by redblade7 » Fri May 15, 2015 11:32 pm

<quote user="mysteryfcm">
Can you forward me the emails (with the original headers) please?

spam @it-mate.co.uk
[/quote]

Ummm...I'd rather not send that information to random people on a message board.

destinationtruth
Posts: 806
Joined: Tue May 12, 2015 7:47 pm
Location: Cherokee Nation

RE: New adult video spam - anyone know more?

Post by destinationtruth » Sat May 16, 2015 12:06 am

<quote user="redblade7">
Ummm...I'd rather not send that information to random people on a message board.
[/quote]

He's not a random person. . . that's Steven and I would send my first born if he asked. ~smiles~

But then my first is a pain in the butt.

A440
Posts: 4718
Joined: Sat Nov 20, 2010 1:56 am

Random guy?

Post by A440 » Sat May 16, 2015 8:45 am

<quote user="redblade7">
Ummm...I'd rather not send that information to random people on a message board.
[/quote]Hehe, I would not consider Steven to be a "random" kind of guy. He's about as legit as you are going to get.

Guest

RE: Random guy?

Post by Guest » Sat May 16, 2015 12:43 pm

<quote user="a440">
Hehe, I would not consider Steven to be a "random" kind of guy. He's about as legit as you are going to get.
[/quote]

echo!

MysteryFCM
Posts: 4912
Joined: Mon Jul 14, 2008 4:47 pm

RE: New adult video spam - anyone know more?

Post by MysteryFCM » Sat May 16, 2015 10:51 pm

Cheers guys (making me blush ;o) )

<quote user="redblade7">
Ummm...I'd rather not send that information to random people on a message board.
[/quote]

I can understand that, and have no problem with it (was hoping to see where the e-mails originated so action could be taken (i.e. takedown and/or cleanup, depending on whether it was a zombie or otherwise compromised machine/server, or simply a dedicated blackhat machine/server etc)).

Guest

RE: New adult video spam - anyone know more?

Post by Guest » Sun May 17, 2015 1:05 am

Steven is the one of the most trusted and adequate members on this forum. He is security professional.

Maybe a bit off-topic but.

<quote user="mysteryfcm">
Can you forward me the emails (with the original headers) please?

spam @it-mate.co.uk
[/quote]

Steven, if I receive spam emails, can I forward these to your address? If yes, then which types of spam is appropriate to forward? Or it doesn't matter which type?

MysteryFCM
Posts: 4912
Joined: Mon Jul 14, 2008 4:47 pm

RE: New adult video spam - anyone know more?

Post by MysteryFCM » Sun May 17, 2015 2:21 am

<quote user="nick vini">
Steven, if I receive spam emails, can I forward these to your address? If yes, then which types of spam is appropriate to forward? Or it doesn't matter which type?
[/quote]

Any type of spam is fine. Most important part is that the original headers are included.

Guest

RE: New adult video spam - anyone know more?

Post by Guest » Sun May 17, 2015 2:32 am

<quote user="mysteryfcm">
Any type of spam is fine. Most important part is that the original headers are included.
[/quote]

Ok. Thanks for answer.

Just when I receive spam email I need to share this with knowlegeable person (just giving a rating for a spammer on WOT isn't enough for me).

Post Reply

Who is online

Users browsing this forum: No registered users and 4 guests