|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
RE: Exchange/Microsoft SMTP Authenticated User spam?
From: Jerry Shenk (jshenk
decommunications.com)
Date: Tue Oct 14 2003 - 13:34:49 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
One of the guys I work with had an incident like that. I never got
on-site to check out the actual traffic. The initial claim was that
they were under a DOS attack....no, it wasn't that. So, I don't have
any really tight evidence on what it was, just a ton of spam that seemed
to come from no-where.
-----Original Message-----
From: wirepair [mailto:wirepairroguemail.net]
Sent: Tuesday, October 14, 2003 1:28 PM
To: incidentssecurityfocus.com
Subject: Exchange/Microsoft SMTP Authenticated User spam?
We've had two calls in the past month regarding supposed authenticated
users sending out spam and using their external mail
servers as relays. I was just curious if anyone else has seen this type
of activity. I crawled the archives and saw about 4 posts
and it seems quite similiar. In one case the person(s) sent over 200,000
emails in a 4 day span. Has anyone seen any scripts that
do this type of attack? Or has anyone else had this happen to them or
someone they know? We would like to give our client a bit
more information then 'change all your passwords.' Thanks,
-wire
--
Visit Things From Another World for the best
comics, movies, toys, collectibles and more.
http://www.tfaw.com/?qt=wmf
------------------------------------------------------------------------
---
------------------------------------------------------------------------
----
---------------------------------------------------------------------------
----------------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]