-----Original Message----- From: jm@jmason.org [mailto:jm@jmason.org] Sent: Friday, August 20, 2004 5:00 PM To: SURBL Discussion list Subject: Re: [SURBL-Discuss] {Spam?} FW: ***SPAM*** (6.0/5.0) ** [lcngroup](Job) Civil ProjectEngineer - Pleasanton, N. CA
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Larry Rosenman writes:
Why is cgt-consult.com on WS?
...
I talked to the admin, and they had been hacked, and used as
a spam source.
They've cleaned up the mess, and have secured the machine.
?? hacked? I wouldn't be so sure.
Based on the spam I got, it looks a lot more like they scraped, or bought a dirty list of scraped addresses.
Here's one of my spamples, in full -- I've munged the address, but believe me, it's 100% spamtrap, appears only on web pages, and has never opted in for anything ever. ;)
- --j.
*snip*
Which is an exact copy of the ones reported on NANAS. Again I ask, hacked? A hacker broke in and sent spams promoting the site he just hacked? How nice of him.
--Chris