[jhb] Re: Hacker strikes again.
- From: "Fossil" <fossil@xxxxxxx>
- To: <jhb@xxxxxxxxxxxxx>
- Date: Sat, 10 Jul 2010 19:48:44 +0100
I've always avoided any IM service after someone showed me how easy it was
to hack into the Windows Messenger service. That was some time ago and I
presume security is now tighter (I hope) but I've never really needed IM and
have never activated that option. Likewise I dumped ICQ for much the same
reason.
bones
<mailto:bones@xxxxxxx> bones@xxxxxxx
From: jhb-bounce@xxxxxxxxxxxxx [mailto:jhb-bounce@xxxxxxxxxxxxx] On Behalf
Of Paul Reynolds
Sent: 10 July 2010 19:23
To: jhb@xxxxxxxxxxxxx
Subject: [jhb] Re: Hacker strikes again.
AIM.COM is the home page for an instant messaging service, which looks as
though it's owned by AOL. Interestingly though they will allow users to log
in using their facebook log-in whch suggests to me AIM could also be behind
the instant messaging system within facebook.
Check your facebook privacy settings - I have all of mine set to 'Friends
Only' - that could be your source.
Another potential source: there's two avsim.net addresses among Bones list.
Could it be the same disgruntled idiots that took Avsim down?
Paul
-----Original Message-----
From: jhb-bounce@xxxxxxxxxxxxx [mailto:jhb-bounce@xxxxxxxxxxxxx] On Behalf
Of Frank Turley
Sent: 10 July 2010 19:05
To: jhb@xxxxxxxxxxxxx
Subject: [jhb] Re: Hacker strikes again.
I wish there was some way these pests could be tracked down and destroyed.
Frank T.
At 15:48 10/07/2010, you wrote:
Unfortunately I received four more spam messages today purporting to come
from Frank. This list also got hit by two attempts to post to it.
As with the last posts the author is said to be Frank Turley at a mythical
@aim address. Posts were sent to me at both my bones address and my jhb
address plus this freelists address. In each case the posts were also
directed to other people in broad alphabetical groups - which suggests an
address book has been hacked.
The trouble is that it is probably not Frank's address book that has been
hit. The usual trick is to get at someone's address book then pick a name
from this at random (in this case Franks) and then sent out spam using this
as the false source.
It is also obvious that the hacked address book comes from someone connected
with Flight Sim (as previously thought) because I recognise many addresses
from early FS days and the UK scenery group.
The post sent to <mailto:HC@xxxxxxxxxx> HC@xxxxxxxxxx also went to other
G-H-I addresses:
greg.jones@xxxxxxxxxxx,
Hal@xxxxxxxxxxxxxx,
Hargreaves.Ian@xxxxxxxxxxxxxxx,
haroon@xxxxxxxxxxx,
HC@xxxxxxxxxx,
help@xxxxxxxxxxxx,
helpline@xxxxxxxxxx,
hjcurtis@xxxxxxxxxxxx,
hughturley@xxxxxxxxxxx,
i.gallacher@xxxxxxxx
The post sent to bones went to J-K-L addresses:
bones@xxxxxxx,
john@xxxxxxxxxxxxxxxxxx,
jud6e@xxxxxxxxxxxxxxxx,
k.roberts@xxxxxxxxxxxxx,
Katherine@xxxxxxxxxxxxxxxxx,
humphreyskim@xxxxxxxxxxx,
kirsty.cullen@xxxxxxxxxxx,
library-files-owner@xxxxxxxxxxxxxxx,
library-files-request@xxxxxxxxxxxxxxx,
Lisa.Horn@xxxxxxxxxxxxxxxxxxxx
And the post to Freelists went to M-N addresses:
Miguelbernardo@xxxxxxxxxxx,
mikemasser@xxxxxxxxxxxxx,
monirgeadah@xxxxxxxxxxxxxxxx,
music__studio@xxxxxxx,
jhb@xxxxxxxxxxxxx,
nglossop@xxxxxxxxxxxxxxxx,
Niall_Byrne@xxxxxxxx,
albions@xxxxxxxxxxxx,
norman@xxxxxxxxxxxxxx,
norman_swardeston@xxxxxxxxxxx
I recognise a few of the addresses above - Howard Curtis, Monir, John
Farrie, Norman Blackburn, Ken Jude, Ian Gallagher - plus there are help
lines for Saitek and Avsim included (the hacker was obviously too lazy to
remove these).
Sadly I don't think there is anything we can do about this hacking. It would
be a stroke of pure luck if we were to find our mutual friend who might have
Niall Byrne, Lisa Horn and others in his address book. Having said that the
FS world is almost solidly a male environment so I guess the three or four
female names on the above list would track the owner down fairly rapidly -
if only we knew where to start.
bones
bones@xxxxxxx
No virus found in this incoming message.
Checked by AVG - www.avg.com <http://www.avg.com/>
Version: 9.0.830 / Virus Database: 271.1.1/2992 - Release Date: 07/09/10
19:36:00
Other related posts:
