The host at this IP address is being (ab)used to «listbomb» email addresses: From: daniel.dacosta@edf-re.fr Subject: Lettre d’information | Octobre 2020 | Parc éolien en mer de Fécamp Problem description ============================ Spammers signed up for the bulk email service using the victim’s email address. As a result, the victim is being «listbombed» with transactional messages… Читать далее Abused / misconfigured newsletter service (listbombing)

The host at this IP address is emitting spam emails. Spam sample ========================================= From: charlie@mobileappsquotation.com Subject: Re: App for Business =========================================

The host at this IP address is being (ab)used to «listbomb» email addresses: From: webseonilesh01@outlook.com Subject: Re: Special offer Website Designing & development Service.. Problem description ============================ Spammers signed up for the bulk email service using the victim’s email address. As a result, the victim is being «listbombed» with transactional messages and bulk email campaigns.… Читать далее Abused / misconfigured newsletter service (listbombing)

The host at this IP address is being (ab)used to «listbomb» email addresses: From: julka.ayesha81@hotmail.com Subject: ranked on google Problem description ============================ Spammers signed up for the bulk email service using the victim’s email address. As a result, the victim is being «listbombed» with transactional messages and bulk email campaigns. Problem resolution ============================ In order… Читать далее Abused / misconfigured newsletter service (listbombing)

The host at this IP address is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse. Malware botnet controller located at 104.41.57.9 on port 80 (using HTTP POST): hXXp://104.41.57.9/bd21.php

The host at this IP address is being (ab)used to «listbomb» email addresses: From: tanyahottonth@outlook.com Subject: RE: Gentle reminder. Problem description ============================ Spammers signed up for the bulk email service using the victim’s email address. As a result, the victim is being «listbombed» with transactional messages and bulk email campaigns. Problem resolution ============================ In order… Читать далее Abused / misconfigured newsletter service (listbombing)

Received: from WjAfdhV4LALnd7j.com (52.183.103.76) Date: Mon, 09 Nov 2020 21:3x:xx +0000 From: «HolidayShopping»<[]> Subject: Fight COVID-19🔥 Receive Your $1OOO Walmart Gift Card! http://alwadifa.today/t?[] Server IP address is 185.55.242.189 => URL: https://www.glowtrk3.com/[] Server IP address is 185.176.220.44 => Location: http://go.pieteresen.com/ts4931-emailclicks-survey-walmart-us-2762?transaction_id=[]&thru=2762 Server IP address is 185.183.90.234 => Location: http://kq6.ourofferlink.company/?kw=ts4931-emailclicks-survey-walmart-us-2762&s1=ts4931-emailclicks-survey-walmart-us-2762&s2=[]&s3=2762&fallback=18 Server: nginx/1.14.2 Server IP address is 104.148.17.138

Received: from umpy.imgflip.com (52.138.202.165) From: Dyson Supersonic Subject: Test & Keep a Dyson Supersonic hair dryer worth £250 Date: Tue, 10 Nov 2020 10:1x:xx +0100 URL: https://www.lp01jtrk.com/[]/?creative_id=4302 Server IP address is 34.95.111.202 => Location: https://vam.xpressconnectlink.company/?s1=[]&kw=376&s2=376&s3= Server IP address is 104.148.17.138

Received: from crainalerts.com (40.83.118.224) From: RussianWomanOnline <x@flutow.site> Subject: Get a HOT Date with the Sexy Russian Women Date: Tue, 10 Nov 2020 09:5x:xx +0000 URL: http://flutow.site/t/[] Server IP address is 68.235.36.28 => https://beyondsourcelist.com/[] Server IP address is 51.79.69.252

The host at this IP address is being (ab)used to «listbomb» email addresses: From: andrewhill313jl@hotmail.com Subject: Re:Develope Problem description ============================ Spammers signed up for the bulk email service using the victim’s email address. As a result, the victim is being «listbombed» with transactional messages and bulk email campaigns. Problem resolution ============================ In order to resolve… Читать далее Abused / misconfigured newsletter service (listbombing)