Re: WOW Re: [gentoo-server] PayPal(R) Account Review Department

Re: WOW Re: [gentoo-server] PayPal(R) Account Review Department

[Tom Grace]

[-- Attachment #1: Type: text/plain, Size: 1680 bytes --]

I think I broke there server trying to write a script to spam it with fake
details. Tried that for a bit then kept getting timeouts. :)

On 24/03/2008, Alexander Hansen <alexander.l.hansen@gmail.com> wrote:
>
> Nate skrev:
>
> > WOW. spammers are stooping pretty low.
> > Being this is a gentoo mailing list, I hope everyone was smart enough
> > not to log in.
> >
> > support@paypal.com wrote:
> >
> >>   <https://www.paypal.com>
> >>
> >> Dear *PayPal (R)* customer,
> >>
> >> We recently reviewed your account, and we suspect an unauthorized
> >> transaction on your account.
> >> Protecting your account is our primary concern. As a preventive measure
> >> we have temporary* limited* your access to sensitive information.
> >> Paypal features.To ensure that your account is not compromised, simply
> >> hit "*Resolution Center*" to confirm your identity as member of Paypal.
> >>
> >>     * Login to your Paypal with your Paypal username and password.
> >>     * Confirm your identity as a card memeber of Paypal.
> >>
> >> Please confirm account information by clicking here Resolution Center
> >> <http://paypal.user-confirmation.com/acc/login.php > and complete the
> >> "Steps to Remove Limitations."
> >>
> >> ***Please do not reply to this message. Mail sent to this address
> cannot
> >> be answered.
> >>
> >> Copyright (c) 1999-2008 PayPal. All rights reserved.
> >> -- gentoo-server@lists.gentoo.org mailing list
> >>
> >>
>
> > My firefox went nuts when I clicked the link, so no worries here ;)
>
> >
> >
> >
>
> --
> gentoo-server@lists.gentoo.org mailing list
>
>


-- 
I include the source code below for those who are masochistic enough to want
to explore it

[-- Attachment #2: Type: text/html, Size: 2586 bytes --]

Re: WOW Re: [gentoo-server] PayPal(R) Account Review Department

[Michelangelo]

[-- Attachment #1: Type: text/plain, Size: 2099 bytes --]

:D
I checked my Firefox just to see how it was going to behave and sure  the
anti fraud works

my Firefox also cried out
I'd like to know your script detail

@Tom:
Tom, i'd like to read yr script details :P , i'd like using it

On Tue, Mar 25, 2008 at 2:04 PM, Tom Grace <stonertom@gmail.com> wrote:

> I think I broke there server trying to write a script to spam it with fake
> details. Tried that for a bit then kept getting timeouts. :)
>
> On 24/03/2008, Alexander Hansen <alexander.l.hansen@gmail.com> wrote:
> >
> > Nate skrev:
> >
> > > WOW. spammers are stooping pretty low.
> > > Being this is a gentoo mailing list, I hope everyone was smart enough
> > > not to log in.
> > >
> > > support@paypal.com wrote:
> > >
> > >>   <https://www.paypal.com>
> > >>
> > >> Dear *PayPal (R)* customer,
> > >>
> > >> We recently reviewed your account, and we suspect an unauthorized
> > >> transaction on your account.
> > >> Protecting your account is our primary concern. As a preventive
> > measure
> > >> we have temporary* limited* your access to sensitive information.
> > >> Paypal features.To ensure that your account is not compromised,
> > simply
> > >> hit "*Resolution Center*" to confirm your identity as member of
> > Paypal.
> > >>
> > >>     * Login to your Paypal with your Paypal username and password.
> > >>     * Confirm your identity as a card memeber of Paypal.
> > >>
> > >> Please confirm account information by clicking here Resolution Center
> > >> <http://paypal.user-confirmation.com/acc/login.php > and complete the
> > >> "Steps to Remove Limitations."
> > >>
> > >> ***Please do not reply to this message. Mail sent to this address
> > cannot
> > >> be answered.
> > >>
> > >> Copyright (c) 1999-2008 PayPal. All rights reserved.
> > >> -- gentoo-server@lists.gentoo.org mailing list
> > >>
> > >>
> >
> > > My firefox went nuts when I clicked the link, so no worries here ;)
> >
> > >
> > >
> > >
> >
> > --
> > gentoo-server@lists.gentoo.org mailing list
> >
> >
>
>
> --
> I include the source code below for those who are masochistic enough to
> want to explore it

[-- Attachment #2: Type: text/html, Size: 3271 bytes --]

Re: WOW Re: [gentoo-server] PayPal(R) Account Review Department

[Tom Grace]

[-- Attachment #1: Type: text/plain, Size: 2708 bytes --]

Didn't get very far, server stopped responding.
I'll have another look tonight, but the gist of it was to generate random
details and pass them to curl (as in read html, set up variables, pass as
post data).

I'll have another shot tonight and see if i get something working.

L8r

On 25/03/2008, Michelangelo <michelangelo.bottura@gmail.com> wrote:
>
> :D
> I checked my Firefox just to see how it was going to behave and sure  the
> anti fraud works
>
> my Firefox also cried out
> I'd like to know your script detail
>
> @Tom:
> Tom, i'd like to read yr script details :P , i'd like using it
>
> On Tue, Mar 25, 2008 at 2:04 PM, Tom Grace <stonertom@gmail.com> wrote:
>
> > I think I broke there server trying to write a script to spam it with
> > fake details. Tried that for a bit then kept getting timeouts. :)
> >
> > On 24/03/2008, Alexander Hansen <alexander.l.hansen@gmail.com> wrote:
> > >
> > > Nate skrev:
> > >
> > > > WOW. spammers are stooping pretty low.
> > > > Being this is a gentoo mailing list, I hope everyone was smart
> > > enough
> > > > not to log in.
> > > >
> > > > support@paypal.com wrote:
> > > >
> > > >>   <https://www.paypal.com>
> > > >>
> > > >> Dear *PayPal (R)* customer,
> > > >>
> > > >> We recently reviewed your account, and we suspect an unauthorized
> > > >> transaction on your account.
> > > >> Protecting your account is our primary concern. As a preventive
> > > measure
> > > >> we have temporary* limited* your access to sensitive information.
> > > >> Paypal features.To ensure that your account is not compromised,
> > > simply
> > > >> hit "*Resolution Center*" to confirm your identity as member of
> > > Paypal.
> > > >>
> > > >>     * Login to your Paypal with your Paypal username and password.
> > > >>     * Confirm your identity as a card memeber of Paypal.
> > > >>
> > > >> Please confirm account information by clicking here Resolution
> > > Center
> > > >> <http://paypal.user-confirmation.com/acc/login.php > and complete
> > > the
> > > >> "Steps to Remove Limitations."
> > > >>
> > > >> ***Please do not reply to this message. Mail sent to this address
> > > cannot
> > > >> be answered.
> > > >>
> > > >> Copyright (c) 1999-2008 PayPal. All rights reserved.
> > > >> -- gentoo-server@lists.gentoo.org mailing list
> > > >>
> > > >>
> > >
> > > > My firefox went nuts when I clicked the link, so no worries here ;)
> > >
> > > >
> > > >
> > > >
> > >
> > > --
> > > gentoo-server@lists.gentoo.org mailing list
> > >
> > >
> >
> >
> > --
> > I include the source code below for those who are masochistic enough to
> > want to explore it
>
>
>


-- 
I include the source code below for those who are masochistic enough to want
to explore it

[-- Attachment #2: Type: text/html, Size: 4527 bytes --]

Re: WOW Re: [gentoo-server] PayPal(R) Account Review Department

[Tom Grace]

[-- Attachment #1.1: Type: text/plain, Size: 1593 bytes --]

Tried to have another crack at the site that spammed this list, but the
domain is a parking page now. To get an idea what I was on about though, I
looked through my spam folder for phishing scams...

TBH, I'd be dissapointed if my gran fell for this one, but the idea is sound

L8r



On 25/03/2008, David Tauriainen <djtavria@iupui.edu> wrote:
>
> They're probably using mod_security (or just weblog script parsers) to
> block IPs of people spamming their site.  You'd need a botnet if you
> wanted to do them real damage.
>
>
> Tom Grace wrote:
> > Didn't get very far, server stopped responding.
> > I'll have another look tonight, but the gist of it was to generate
> random details and pass them to curl (as in read html, set up variables,
> pass as post data).
> >
> > I'll have another shot tonight and see if i get something working.
> >
> > L8r
> >
>
> > On 25/03/2008, Michelangelo <michelangelo.bottura@gmail.com<mailto:
> michelangelo.bottura@gmail.com>> wrote:
> > :D
> > I checked my Firefox just to see how it was going to behave and
> sure  the anti fraud works
> >
> > my Firefox also cried out
> > I'd like to know your script detail
> >
> > @Tom:
> > Tom, i'd like to read yr script details :P , i'd like using it
> >
> >
>
> > On Tue, Mar 25, 2008 at 2:04 PM, Tom Grace <stonertom@gmail.com<mailto:
> stonertom@gmail.com>> wrote:
> > I think I broke there server trying to write a script to spam it with
> fake details. Tried that for a bit then kept getting timeouts. :)
>
>


-- 
I include the source code below for those who are masochistic enough to want
to explore it

[-- Attachment #1.2: Type: text/html, Size: 2280 bytes --]

[-- Attachment #2: spamTheBastards.sh --]
[-- Type: application/x-sh, Size: 1529 bytes --]

Re: WOW Re: [gentoo-server] PayPal(R) Account Review Department

[Bastiaan Visser]

its back up

while true; do ./spamTheBastards.sh ; done



To Grace wrote:
> Tried to have another crack at the site that spammed this list, but the
> domain is a parking page now. To get an idea what I was on about though, I
> looked through my spam folder for phishing scams...
>
> TBH, I'd be dissapointed if my gran fell for this one, but the idea is sound
>
> L8r
>
>
>
> On 25/03/2008, David Tauriainen <djtavria@iupui.edu> wrote:
>   
>> They're probably using mod_security (or just weblog script parsers) to
>> block IPs of people spamming their site.  You'd need a botnet if you
>> wanted to do them real damage.
>>
>>
>> Tom Grace wrote:
>>     
>>> Didn't get very far, server stopped responding.
>>> I'll have another look tonight, but the gist of it was to generate
>>>       
>> random details and pass them to curl (as in read html, set up variables,
>> pass as post data).
>>     
>>> I'll have another shot tonight and see if i get something working.
>>>
>>> L8r
>>>
>>>       
>>> On 25/03/2008, Michelangelo <michelangelo.bottura@gmail.com<mailto:
>>>       
>> michelangelo.bottura@gmail.com>> wrote:
>>     
>>> :D
>>> I checked my Firefox just to see how it was going to behave and
>>>       
>> sure  the anti fraud works
>>     
>>> my Firefox also cried out
>>> I'd like to know your script detail
>>>
>>> @Tom:
>>> Tom, i'd like to read yr script details :P , i'd like using it
>>>
>>>
>>>       
>>> On Tue, Mar 25, 2008 at 2:04 PM, Tom Grace <stonertom@gmail.com<mailto:
>>>       
>> stonertom@gmail.com>> wrote:
>>     
>>> I think I broke there server trying to write a script to spam it with
>>>       
>> fake details. Tried that for a bit then kept getting timeouts. :)
>>
>>
>>     
>
>
>   

-- 
gentoo-server@lists.gentoo.org mailing list