[76784] in North American Network Operators' Group
Re: Stolen creditcard and DDoS spam
daemon@ATHENA.MIT.EDU (Steven M. Bellovin)
Wed Dec 29 09:03:31 2004
From: "Steven M. Bellovin" <smb@cs.columbia.edu>
To: Iljitsch van Beijnum <iljitsch@muada.com>
Cc: NANOG list <nanog@merit.edu>
In-Reply-To: Your message of "Wed, 29 Dec 2004 12:24:09 +0100."
<2850A9B8-598C-11D9-BFE9-000A95CD987A@muada.com>
Date: Wed, 29 Dec 2004 09:02:39 -0500
Errors-To: owner-nanog-outgoing@merit.edu
In message <2850A9B8-598C-11D9-BFE9-000A95CD987A@muada.com>, Iljitsch van Beijn
um writes:
>
>I usually ignore spam other than to sift through my spambox for false
>positives from time to time, but now I got one that was significantly
>higher up the annoyance scale. A quote:
>
>"we can offer you stolen data about credit cards of Europe and USA
>inhabitants and also of Asian countries. Here and just here you'll be
>able to find out all about your boss, how much does he earn, his SSN
>and a lot of other info. We accept orders for DDOS-attacks of any
>servers and also we offer spam-services."
>
>Since they say in so many words that they're breaking the law, and
>there is a good number of URLs listed, it may be worthwhile to track
>them down. Anyone have a pointer to a law enforcement agency or group
>or whatever that might be interested in this?
>
Many -- probably most or even all -- spam that advertises blatantly
illegal services is an attempt by one group of spammers to annoy
another group of spammers/hackers. That is, the folks who posted that
are trying to cause trouble for the web sites they listed.
--Prof. Steven M. Bellovin, http://www.cs.columbia.edu/~smb
