Home |
Search |
Today's Posts |
|
UK diy (uk.d-i-y) For the discussion of all topics related to diy (do-it-yourself) in the UK. All levels of experience and proficency are welcome to join in to ask questions or offer solutions. |
Reply |
|
LinkBack | Thread Tools | Display Modes |
#1
Posted to uk.d-i-y
|
|||
|
|||
[OT] Customer database leaks
In common with a few other posters here, I run my own email server,
which I've configured to allow throwaway addresses: eg will come to me for any variation of stuff between the _ and @ Just had a rash of SPAM to two different email addresses - each address has only been used with one company and not published. One company is well know here but I'm going to do them the courtesy of looking into it before I publish their name. Just wondered if anyone else has noticed anything? I am of course concerned that if my data has leaked, then perhaps credit cards have too. |
#2
Posted to uk.d-i-y
|
|||
|
|||
[OT] Customer database leaks
Tim Watts wrote:
In common with a few other posters here, I run my own email server, which I've configured to allow throwaway addresses: eg will come to me for any variation of stuff between the _ and @ Just had a rash of SPAM to two different email addresses - each address has only been used with one company and not published. One company is well know here but I'm going to do them the courtesy of looking into it before I publish their name. Just wondered if anyone else has noticed anything? Not recently but I have a list of about 20 addresses (companies) that I've blacklisted for un-unsubscribable (IYSWIM) spam. Some of the companies are quite reputable (e.g. Amazon, Macromedia, Which) and my impression is that addresses were stolen by an employee or contractor, indicating an internal security lapse by the company. -- Mike Barnes Cheshire, England |
#3
Posted to uk.d-i-y
|
|||
|
|||
[OT] Customer database leaks
On 20/01/2015 15:01, Tim Watts wrote:
In common with a few other posters here, I run my own email server, which I've configured to allow throwaway addresses: eg will come to me for any variation of stuff between the _ and @ Just had a rash of SPAM to two different email addresses - each address has only been used with one company and not published. One company is well know here but I'm going to do them the courtesy of looking into it before I publish their name. Just wondered if anyone else has noticed anything? I am of course concerned that if my data has leaked, then perhaps credit cards have too. I get an increasing amount of spam, even on 2 email addresses I have only ever used to banks. I have no idea whom they are from as I never open them, they all have attachments. Usually they are spurious bills, invoices and whatever. |
#4
Posted to uk.d-i-y
|
|||
|
|||
[OT] Customer database leaks
On 20/01/2015 15:54, Jethro_uk wrote:
On Tue, 20 Jan 2015 15:01:59 +0000, Tim Watts wrote: In common with a few other posters here, I run my own email server, which I've configured to allow throwaway addresses: eg will come to me for any variation of stuff between the _ and @ Just had a rash of SPAM to two different email addresses - each address has only been used with one company and not published. One company is well know here but I'm going to do them the courtesy of looking into it before I publish their name. Just wondered if anyone else has noticed anything? There is a lot of spam about today - mostly of the form: Subject: Undefined transactions (need assistance) Ref: 1234566ABC Randomly varying last part seems to get past the filters I am of course concerned that if my data has leaked, then perhaps credit cards have too. Well they *will* be stored PCI-DSS compliant, won't they ? It is conceivable that they were daft enough to be running Mickeysoft products that the hostile malformed attachment was targeting and that subsequently their zombie machines are now spamming customer lists. I wouldn't necessarily hold it against them. I have had a few hundred today mostly to old Usenet msgids but some to random strings. I know someone who has already clocked up over a thousand and we are both "protected" by at least two levels of antispam measures. My local filters zap them without problem but the odd one has come through to genuine and previously unpublished unique addresses. Been a long while since it was this bad for spam getting through. -- Regards, Martin Brown |
#5
Posted to uk.d-i-y
|
|||
|
|||
[OT] Customer database leaks
On 20/01/15 15:54, Jethro_uk wrote:
Well they *will* be stored PCI-DSS compliant, won't they ? Hahahhahah. Pop along to a security conference (eg SANS) if you want your hairs to curl... Even the big boys cannot get it right a lot of the time (eg Adobe and RBS Worldpay with their massive data leaks). Now take this down to every man-Jack and boy with a card reader. CC numbers written on post-its stuck around the room, or logged dutifully in a customer address book. |
#6
Posted to uk.d-i-y
|
|||
|
|||
[OT] Customer database leaks
/Just wondered if anyone else has noticed anything?/q
Now you mention it, lots of correctly addressed spam to one other corporate email addy in last 24 hours.... Jim K |
#7
Posted to uk.d-i-y
|
|||
|
|||
[OT] Customer database leaks
On 20/01/15 16:00, Broadback wrote:
I get an increasing amount of spam, even on 2 email addresses I have only ever used to banks. I have no idea whom they are from as I never open them, they all have attachments. Usually they are spurious bills, invoices and whatever. I'm seeing a big jump in malware - sadly in the form of .doc and .xls (etc etc) attachments. Occasionally I run one through strings and it wants to do nefarious things. If I had a time machine, I would go back and find the spakker who thought it was a good idea to let document macros do stuff[1] outside of their immediate document and punch him in the face. eg open URLs, files etc. |
#8
Posted to uk.d-i-y
|
|||
|
|||
[OT] Customer database leaks
I've just had some spam advertising Viagra. First one in years. Perhaps
they know I'm getting older. Or has the ISP spam filter expired the name? -- *IF A PARSLEY FARMER IS SUED, CAN THEY GARNISH HIS WAGES? Dave Plowman London SW To e-mail, change noise into sound. |
#9
Posted to uk.d-i-y
|
|||
|
|||
[OT] Customer database leaks
On 20/01/2015 16:00, Broadback wrote:
On 20/01/2015 15:01, Tim Watts wrote: In common with a few other posters here, I run my own email server, which I've configured to allow throwaway addresses: eg will come to me for any variation of stuff between the _ and @ Just had a rash of SPAM to two different email addresses - each address has only been used with one company and not published. One company is well know here but I'm going to do them the courtesy of looking into it before I publish their name. Just wondered if anyone else has noticed anything? I am of course concerned that if my data has leaked, then perhaps credit cards have too. I get an increasing amount of spam, even on 2 email addresses I have only ever used to banks. I have no idea whom they are from as I never open them, they all have attachments. Usually they are spurious bills, invoices and whatever. I have had the same to 2 email addresses I have uniquely supplied to Santander a few years back. Is yours a different bank? |
#10
Posted to uk.d-i-y
|
|||
|
|||
[OT] Customer database leaks
On 20/01/2015 17:29, Fredxxx wrote:
I have had the same to 2 email addresses I have uniquely supplied to Santander a few years back. Same here. Started getting them in November. The address was only ever used for an old Abbey (now Santander) account which was closed about a year ago. -- Mike Clarke |
#11
Posted to uk.d-i-y
|
|||
|
|||
[OT] Customer database leaks
On 20/01/2015 18:13, Mike Clarke wrote:
On 20/01/2015 17:29, Fredxxx wrote: I have had the same to 2 email addresses I have uniquely supplied to Santander a few years back. Same here. Started getting them in November. The address was only ever used for an old Abbey (now Santander) account which was closed about a year ago. Getting emails to an email address exclusively given for Alliance and Leicester sort of confirms the haemorrhage of email addresses. |
#12
Posted to uk.d-i-y
|
|||
|
|||
[OT] Customer database leaks
In message , Tim Watts
writes On 20/01/15 16:00, Broadback wrote: I get an increasing amount of spam, even on 2 email addresses I have only ever used to banks. I have no idea whom they are from as I never open them, they all have attachments. Usually they are spurious bills, invoices and whatever. I'm seeing a big jump in malware - sadly in the form of .doc and .xls (etc etc) attachments. Occasionally I run one through strings and it wants to do nefarious things. If I had a time machine, I would go back and find the spakker who thought it was a good idea to let document macros do stuff[1] outside of their immediate document and punch him in the face. eg open URLs, files etc. Bill Gates? -- bert |
#13
Posted to uk.d-i-y
|
|||
|
|||
[OT] Customer database leaks
On 20/01/2015 15:17, Mike Barnes wrote:
Not recently but I have a list of about 20 addresses (companies) that I've blacklisted for un-unsubscribable (IYSWIM) spam. Some of the companies are quite reputable (e.g. Amazon, Macromedia, Which) and my impression is that addresses were stolen by an employee or contractor, indicating an internal security lapse by the company. Which? apologised to me some years ago - their database was hacked. They were the only people I've ever had that response from - everyone else tries to tell me it must be my end. Even for an address specially crafted for them. I've had nothing from amazon, and I have no contact with Macromedia. I too have been seeing munged email addresses - instead of my standard andy@ I've seen andyn@ for some years; a bit later andynn@ turned up. I've also seen goatqvcp@ and lao@ - I've never used them. The latest batch seem to lose letters, so I've seen ndy@. Amusingly I've also seen ndyn@ and ndynn@ - they've broken a bad address I too am seeing the invoice ones. I have no idea what is in them, I've never looked past the headers or even downloaded them. Andy |
#14
Posted to uk.d-i-y
|
|||
|
|||
[OT] Customer database leaks
On 20/01/15 21:48, Vir Campestris wrote:
On 20/01/2015 15:17, Mike Barnes wrote: Not recently but I have a list of about 20 addresses (companies) that I've blacklisted for un-unsubscribable (IYSWIM) spam. Some of the companies are quite reputable (e.g. Amazon, Macromedia, Which) and my impression is that addresses were stolen by an employee or contractor, indicating an internal security lapse by the company. Which? apologised to me some years ago - their database was hacked. They were the only people I've ever had that response from - everyone else tries to tell me it must be my end. Even for an address specially crafted for them. I've had nothing from amazon, and I have no contact with Macromedia. I too have been seeing munged email addresses - instead of my standard andy@ I've seen andyn@ for some years; a bit later andynn@ turned up. I've also seen goatqvcp@ and lao@ - I've never used them. The latest batch seem to lose letters, so I've seen ndy@. Amusingly I've also seen ndyn@ and ndynn@ - they've broken a bad address I too am seeing the invoice ones. I have no idea what is in them, I've never looked past the headers or even downloaded them. Andy SWMBO who is a PCI/Security officer says I should dob all mine to the Information Commissioner's Office (ICO) if I don't get taken seriously. |
#15
Posted to uk.d-i-y
|
|||
|
|||
[OT] Customer database leaks
On 20/01/15 22:12, Tim Watts wrote:
SWMBO who is a PCI/Security officer says I should dob all mine to the Information Commissioner's Office (ICO) if I don't get taken seriously. He https://ico.org.uk/concerns/ |
#16
Posted to uk.d-i-y
|
|||
|
|||
[OT] Customer database leaks
On 20/01/2015 22:12, Tim Watts wrote:
On 20/01/15 21:48, Vir Campestris wrote: On 20/01/2015 15:17, Mike Barnes wrote: Not recently but I have a list of about 20 addresses (companies) that I've blacklisted for un-unsubscribable (IYSWIM) spam. Some of the companies are quite reputable (e.g. Amazon, Macromedia, Which) and my impression is that addresses were stolen by an employee or contractor, indicating an internal security lapse by the company. Which? apologised to me some years ago - their database was hacked. They were the only people I've ever had that response from - everyone else tries to tell me it must be my end. Even for an address specially crafted for them. I've had nothing from amazon, and I have no contact with Macromedia. I too have been seeing munged email addresses - instead of my standard andy@ I've seen andyn@ for some years; a bit later andynn@ turned up. I've also seen goatqvcp@ and lao@ - I've never used them. The latest batch seem to lose letters, so I've seen ndy@. Amusingly I've also seen ndyn@ and ndynn@ - they've broken a bad address I too am seeing the invoice ones. I have no idea what is in them, I've never looked past the headers or even downloaded them. Andy SWMBO who is a PCI/Security officer says I should dob all mine to the Information Commissioner's Office (ICO) if I don't get taken seriously. Then she will see that you will be fobbed off, where the ICO will simply say its a coincidence, and that spammer has just tried various permutations/assumptions about possible email addresses and hit on one you've provided. |
#17
Posted to uk.d-i-y
|
|||
|
|||
[OT] Customer database leaks
On 20/01/15 22:16, Fredxxx wrote:
Then she will see that you will be fobbed off, where the ICO will simply say its a coincidence, and that spammer has just tried various permutations/assumptions about possible email addresses and hit on one you've provided. I agree WRT to PCI - I have not seen any meaning punishments dish out. However, the ICO does seem to occasionally punish morons: https://ico.org.uk/about-the-ico/new...ews-and-blogs/ |
#18
Posted to uk.d-i-y
|
|||
|
|||
[OT] Customer database leaks
On Tue, 20 Jan 2015 19:17:03 +0000, Fredxxx wrote:
On 20/01/2015 18:13, Mike Clarke wrote: On 20/01/2015 17:29, Fredxxx wrote: I have had the same to 2 email addresses I have uniquely supplied to Santander a few years back. Same here. Started getting them in November. The address was only ever used for an old Abbey (now Santander) account which was closed about a year ago. Getting emails to an email address exclusively given for Alliance and Leicester sort of confirms the haemorrhage of email addresses. Same here. And the account was closed years ago. -- (\__/) M. (='.'=) If a man stands in a forest and no woman is around (")_(") is he still wrong? |
#19
Posted to uk.d-i-y
|
|||
|
|||
[OT] Customer database leaks
On Tue, 20 Jan 2015 21:48:42 +0000, Vir Campestris
wrote: On 20/01/2015 15:17, Mike Barnes wrote: Not recently but I have a list of about 20 addresses (companies) that I've blacklisted for un-unsubscribable (IYSWIM) spam. Some of the companies are quite reputable (e.g. Amazon, Macromedia, Which) and my impression is that addresses were stolen by an employee or contractor, indicating an internal security lapse by the company. Which? apologised to me some years ago - their database was hacked. They were the only people I've ever had that response from - everyone else tries to tell me it must be my end. Even for an address specially crafted for them. I've had nothing from amazon, and I have no contact with Macromedia. Same here. I use unique addresses for every organisation so it would be clear which organisation leaked. I too have been seeing munged email addresses - instead of my standard andy@ I've seen andyn@ for some years; a bit later andynn@ turned up. I've also seen goatqvcp@ and lao@ - I've never used them. The latest batch seem to lose letters, so I've seen ndy@. Amusingly I've also seen ndyn@ and ndynn@ - they've broken a bad address Most of the spam is filtered before I see it but I haven't seen any munged email addresses so far FWIW. -- (\__/) M. (='.'=) If a man stands in a forest and no woman is around (")_(") is he still wrong? |
#20
Posted to uk.d-i-y
|
|||
|
|||
[OT] Customer database leaks
Mark wrote:
On Tue, 20 Jan 2015 21:48:42 +0000, Vir Campestris wrote: On 20/01/2015 15:17, Mike Barnes wrote: Not recently but I have a list of about 20 addresses (companies) that I've blacklisted for un-unsubscribable (IYSWIM) spam. Some of the companies are quite reputable (e.g. Amazon, Macromedia, Which) and my impression is that addresses were stolen by an employee or contractor, indicating an internal security lapse by the company. Which? apologised to me some years ago - their database was hacked. They were the only people I've ever had that response from - everyone else tries to tell me it must be my end. Even for an address specially crafted for them. I've had nothing from amazon, and I have no contact with Macromedia. Same here. I use unique addresses for every organisation so it would be clear which organisation leaked. Same here. I include the name of the organisation in the address. One organisation queried that (did I really mean it?). Another organisation actually *objected* to me using their name in my address, even after I explained why I did it. The organisation? Which Legal. :-) -- Mike Barnes Cheshire, England |
#21
Posted to uk.d-i-y
|
|||
|
|||
[OT] Customer database leaks
Fredxxx wrote:
On 20/01/2015 18:13, Mike Clarke wrote: On 20/01/2015 17:29, Fredxxx wrote: I have had the same to 2 email addresses I have uniquely supplied to Santander a few years back. Same here. Started getting them in November. The address was only ever used for an old Abbey (now Santander) account which was closed about a year ago. Getting emails to an email address exclusively given for Alliance and Leicester sort of confirms the haemorrhage of email addresses. Connectedly, AFAICS the reason companies insist on us using ever-more-complicated passwords is that they're afraid of their password databases being stolen. Guessing a password over the internet would be slow and easily detectable, but guessing a password using a stolen database is a doddle. -- Mike Barnes Cheshire, England |
#22
Posted to uk.d-i-y
|
|||
|
|||
[OT] Customer database leaks
On 20/01/15 15:01, Tim Watts wrote:
In common with a few other posters here, I run my own email server, which I've configured to allow throwaway addresses: eg will come to me for any variation of stuff between the _ and @ Just had a rash of SPAM to two different email addresses - each address has only been used with one company and not published. One company is well know here but I'm going to do them the courtesy of looking into it before I publish their name. Just wondered if anyone else has noticed anything? I am of course concerned that if my data has leaked, then perhaps credit cards have too. Credit cards are generally held in such a form that not even company employees can read them. I assume that every time I enter an email address on any company website it will be globally available within hours. -- Everything you read in newspapers is absolutely true, except for the rare story of which you happen to have first-hand knowledge. €“ Erwin Knoll |
#23
Posted to uk.d-i-y
|
|||
|
|||
[OT] Customer database leaks
On Wednesday, 21 January 2015 16:16:59 UTC, Mike Barnes wrote:
Same here. I include the name of the organisation in the address. One organisation queried that (did I really mean it?). Another organisation actually *objected* to me using their name in my address, even after I explained why I did it. The organisation? Which Legal. :-) "It's an anti-spam measure. Having the sending organisation name in the recipient name as well as the sending domain means the email doesn't get junked". Although the spam I get tends to be to addresses I used on Usenet about 10 years ago. Owain |
Reply |
Thread Tools | Search this Thread |
Display Modes | |
|
|
Similar Threads | ||||
Thread | Forum | |||
wood database | Woodworking | |||
DVD Database - DVD_Database_pic.jpg (0/1) | Electronic Schematics | |||
RCM wiki database | Metalworking | |||
Roof Leaks Deck Leaks HELP | Home Ownership | |||
Subsidence database? | UK diy |