|
Posted by flakeystuff on June 7, 2008, 7:18 pm
If you were Registered and logged in, you could reply and use other advanced thread options
>
> > I'm in an IT department in a small community college that offers emails,=
> > wireless, VPN to students.
>
> > Lately we have been having spammers access student email accounts and
> > sending spam. We are researching how the the account details were obtain=
ed.
>
> > I have looked in the server logs and noticed a number of successful
> > authentications from a suspicious IP; the authentications were to ~50
> > accounts. It looked like someone was testing if accounts from a list had=
> > the correct credentials: the authentications were run via script.
>
> > Question: Are these type of account details bought and sold? I have a
> > feeling that someone bought set of college accounts and ran a script to
> > evaluate which were still working. About a month later the spam started.=
>
> Yeah, I hear some wanted a contaminating agent: aka contaminate.
>
> They suffered 92% loss.
>
> Knowin'.
so it coming. took 'em a while. Niice tuft...
| 
XML site map