Sunday, April 13, 2008

 

ACLU server hijacked for phishing

This is just too funny. From a spam posted to news.admin.net-abuse.email.

Delivered-To: [redacted address]
Received: from exch2.aclu.org (smtp01.aclu.org [65.206.18.18])
   by [redacted hostname] (Postfix) with ESMTP id E004A11423
    for <[redacted address]>; Tue, 8 Apr 2008 10:27:31 -0700 (PDT)
Received: from nyexfe01.aclu.org ([10.1.1.248]) by exch2.aclu.org with Microsoft
    SMTPSVC(5.0.2195.6713);
    Tue, 8 Apr 2008 13:27:06 -0400
Received: from User ([85.120.78.130]) by nyexfe01.aclu.org with Microsoft SMTPSVC(6.0.3790.3959);
    Tue, 8 Apr 2008 13:27:05 -0400
From: "PayPal.com"
Subject: To many wrong attemps
Date: Tue, 8 Apr 2008 20:29:01 +0300
MIME-Version: 1.0
Content-Type: text/plain;
    charset="Windows-1251"
Content-Transfer-Encoding: 7bit
X-Priority: 1
X-MSMail-Priority: High
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
Message-ID:
X-OriginalArrivalTime: 08 Apr 2008 17:27:06.0036 (UTC) FILETIME=[C42E8F40:01C8999D]
To: undisclosed-recipients:;

Because you have to many wrong attemps on your Paypal login,
we had to put your account on hold.

...
Years ago, when it was still possible to save the public email system, the ACLU carried water for the Direct Marketing (scumbag) Association, convincing Zoe "Clueless" Lofgren (D-CA) that spamming is free speech, not theft of service and illegal conversion of assets. The headers show ACLU runs Microsoft Exchange Server. Of course it got hacked and the criminal is sending phish spam exercising his first amendment rights with it. I wonder if anybody told them yet.

This page is powered by Blogger. Isn't yours?