-
Recent Entries
Monthly Archives
- October 2021
- September 2021
- August 2021
- March 2021
- February 2021
- December 2020
- November 2020
- October 2020
- September 2020
- August 2020
- April 2020
- February 2020
- December 2019
- April 2019
- February 2019
- January 2019
- October 2018
- July 2018
- June 2018
- April 2018
- February 2018
- December 2017
- July 2017
- May 2017
- February 2017
- January 2017
- November 2016
- October 2016
- September 2016
- August 2016
- July 2016
- June 2016
- April 2016
- March 2016
- February 2016
- December 2015
- October 2015
- September 2015
- August 2015
- July 2015
- June 2015
- December 2014
- November 2014
- September 2014
- August 2014
- July 2014
- May 2014
Monthly Archives: July 2014
When rwhois says ‘private customer’
An especially virulent affiliate marketing campaign was noted today, from a /23 on Stealthy Networks. While it is nice that they have an rwhois server, it doesn’t help the community when registered as ‘Private Customer’. Is it the same as … Continue reading
EHLO command received: ylmf-pc
An interesting Bot style attack, if you see this in your logs. Normally originating from DUL/Dynamic addressing ranges, this is a high impact attack, which simply connects to a mail server, issues a HELO/EHLO of ylmf-pc, and then exits the … Continue reading
Latest Bot Spam Making the rounds
A risk free antiobesity drug.. yeah right.. Normally this shouldn’t affect most people, as it is coming from compromised devices and not email servers, and it looks to be going out to a database of hacked or stolen email addresses … Continue reading
Is your ‘rwhois’ server running?
It’s always amazing when looking at large providers who have a referral to an ‘rwhois’ server at ARIN, when that server is not functioning. Makes it hard to identify who operates the server where the spam is originating. For example.. … Continue reading