[Kaonashi]

So what have we learned? Using services like Sneakemail (or spamgourmet, or unique aliases at your own domain) is never a bad idea

[derekvader]

I have started receiving several spams on my msfn@mydomain.com address, only used here, today.

Batten down the hatches everyone

[snowman1]

I too have started receiving numerous spam messages to an address only used for this forum. To say I'm unhappy about my mail being leaked/harvested would be putting it mildly. Not good enough.

[Zachariah]

Heofz, on Jul 19 2006, 11:40 AM, said:

Zachariah, on Jul 12 2006, 09:09 PM, said:

I use msfn.org@[example].com (with my domain) as the email address for this site. Today I got a spam sent to that address. <snip>

xper, on Jul 13 2006, 11:48 AM, said:

Does any of you has msfn in mail address? Like msfn@ or msfn.org@?

yup. happened to me too

Kaonashi had a good point. That's sorta why I use a traceable email address on public forums. I don't trust their security enough. I don't blame the people who run public forums, nor the forum authors. Complex software is just insecure.

Luckily I was able to use a new email alias here (by adding the number "2") and I turned off the old one.

I do hate to hear that some people have used their primary email address here, and therefore cannot change it -- but I do advise that you learn from this and use a throw-away-able (changeable) email address (or alias) in the future for public forums.

[Camarade_Tux]

Victim too I think.

Here is a typical mail for me :

De: xymenes@loveable.com Ternov 
À: camara01recope@gmail.com 
Date: Thu, 20 Jul 2006 23:29:11 +0200 
Objet: re:your resume 
 
<html><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" 
<head></head> 
<body bgcolor=#ffffff>
 Hello, Sir/Madam! <br>
 <font color=#fcfcfc>u's bison notch gila</font><br>
 This message was originally posted by Hot Jobs 4 You system and has nothing to do with spam! <br>
Our Company is seeking applications for many Work-at-home positions  <br>
<font color=#fcfcfc>pardon bleat jugs today</font><br>
Employers guarantee payroll tax deposits and reporting, retirement and various reports,<br>
other accounting functions. Attention to detail is a must and well as the ability to multi-task.<br>
Equivalent experience providing knowledge, skills and abilities. Pre-employment <br>testing and criminal background history check required. Salary DOQ, excellent benefits.  <br>
 <font color=#fcfcfc>martyr grain bills bowie</font><br>
If you are interested in this proposal send us your resume ASAP and employer will contact you. <br>
hallstein@best-user-choose.info  <br>
<font color=#fcfcfc>34th taffy gum angel</font><br>
Best regards, <br>
Hot Jobs 4 You Employee Search Department<br>
</body>

And camara01recope@gmail.com is not my correct address : the real one is pratty obvious, all you have to know is that gmails doesn't accept underscores.

Hopefully the spam I receive always starts the same way and the sendto address too. I should be able to filter that out.

[sflesch]

Hey all, I too use te MSFN@... email convention and have been receiving spam. I also started receiving it from Konfabulator at the same time, so for anyone investigating, you may want to get with Konfabulator forum people to see what they say. I am posting a reply to one of their announcement messages in regards to this issue.

Thx
Sean

[Aegis]

There's no way to stop the spam ! Gave up and just started another Gmail account. Lesson learned: don't trust anyone with your email.

[xper]

There was a security exploit in IPB v2.1.6 known only to small group of hackers. We found some indications that IPB was compromised in a malicious way. Unfortunately, we do not know how much information was compromised. As of this time, we know that members who were registered as of July 12, 2006 had their addresses harvested by the compromise. Please change your e-mail address and password to ensure your security.

MSFN has existed for more then five years and has never solicited or leaked any member information to anyone.

We apologize for any inconvience.

[Camarade_Tux]

Camarade_Tux, on Jul 21 2006, 12:28 AM, said:

Victim too I think.

Here is a typical mail for me :

De: xymenes@loveable.com Ternov 
À: camara01recope@gmail.com 
Date: Thu, 20 Jul 2006 23:29:11 +0200 
Objet: re:your resume 
 
<html><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" 
<head></head> 
<body bgcolor=#ffffff>
 Hello, Sir/Madam! <br>
 <font color=#fcfcfc>u's bison notch gila</font><br>
 This message was originally posted by Hot Jobs 4 You system and has nothing to do with spam! <br>
Our Company is seeking applications for many Work-at-home positions  <br>
<font color=#fcfcfc>pardon bleat jugs today</font><br>
Employers guarantee payroll tax deposits and reporting, retirement and various reports,<br>
other accounting functions. Attention to detail is a must and well as the ability to multi-task.<br>
Equivalent experience providing knowledge, skills and abilities. Pre-employment <br>testing and criminal background history check required. Salary DOQ, excellent benefits.  <br>
 <font color=#fcfcfc>martyr grain bills bowie</font><br>
If you are interested in this proposal send us your resume ASAP and employer will contact you. <br>
hallstein@best-user-choose.info  <br>
<font color=#fcfcfc>34th taffy gum angel</font><br>
Best regards, <br>
Hot Jobs 4 You Employee Search Department<br>
</body>

And camara01recope@gmail.com is not my correct address : the real one is pratty obvious, all you have to know is that gmails doesn't accept underscores.

Hopefully the spam I receive always starts the same way and the sendto address too. I should be able to filter that out.

I check my Spam box in gmail and there are 5 spams in it : 22 July, 21 July, 21 July, 20 July and 20 July.
I am wondering how much do other peoples get per day ?
Also, every time I get a spam in gmail, I use the "report as spam" button. I don't know how efficient it is, but anyway I do it. Does anybody else does the same ?

This was to say : if this spam is caused, indirectly, by msfn, as far as I'm concerned, it is still a minor annoyance (if not an annoyance anymore)

[Camarade_Tux]

You advise to change passwords.
What does msfn stores : clear password or hashed password ?

[XPerties]

Camarade_Tux, on Jul 23 2006, 06:30 AM, said:

You advise to change passwords.
What does msfn stores : clear password or hashed password ?

It stores IPB passwords.......




Doesn't really matter, you should update your password.

[Camarade_Tux]

Changing my passwords would be a pain. However my ! password is pretty strong I think and if it is only stored as a hash then I'd take the risk.

[tain]

IPB uses MD5 hashes but xper has requested that everyone change their email and password.

[Super-Magician]

xper: If I did not receive any such spam email, do you still recommend that I change my address and password?

[gamehead200]

Super-Magician, on Jul 23 2006, 08:39 AM, said:

xper: If I did not receive any such spam email, do you still recommend that I change my address and password?

Yes. I changed my password. Everyone should do the same, just to be safe.

[pcalvert]

If you posted copies of spam containing links to the spammers' web sites, please edit your post(s) and remove them (the links). It makes no sense to promote the spammers web sites for them.

In addition, it would help if you would report the spam as soon as you get it. Go to spamcop.net and open a free account. But don't bother reporting any spam that is more than two days old, as it will be rejected.

Reporting the spam will make it harder for the spam to get through because the IP addresses that it is being sent from will be put on a blacklist. It will also let the ISPs know that there are customers on their networks with compromised computers-- you will be helping the unfortunate people whose computers have been infested and hijacked by these parasites.

Phil

[prx984]

i kept getting some spam, but i dont think it was from MSFN. so all i did was block the email it used to send to me and i havent gotten anything in the past few days now.

heres the email address i kept getting mail from: ****@madrid.com where * was a different thing everyday.

i just blocked the @madrid.com thing in Outlook Express, and it just deletes anything like that from the server.

i also changed my msfn password, but im not getting a new email just for this lol. it doesnt bother me as much.

in no way would i blame MSFN for this. it was an accident, stuff happens. so , ill just deal with it in my own way.

thanks msfn for at least ackknowledging it. i give you a lot of credit for that

regards, cygnus


i found a copy of the mail i was deleivered. this is also from a different email address now too, weird... ill be blocking this domain too.

Quote

Original Message Received From : zywfwgsjy@cerne.net

outside
attempt salad.
sake. DNAPosted beyond genes. genetic
patent later.
FoodSpam WireSteve Munro TTC
anywhere. Beingfree among
Caesar. declared sludge pretends wearing
checking driving. maps gtSearch
vol. grows
Rating: views:
based
Relay
entire royalty notice
pieces rejoin sorting Recovery
detergent Tell brandname
steady attained. emulsify quickly.
copyleft stated thatwhen denyother
Basov Aleksandr Prokhorov
decision entry. That changing.
Roff Dundee Medical School
SVCD for... Splitter WMV
xexadxedx xcesky Dansk
OSNews coverage: Heise LinuxFR French OpenNET Russian Austrian
Growth leverage ITV
slangJune
Sams. Proud
sne
argon occur rather fiber Gaussian beams. pure modes analyzed having
Doyle
Gordon Herbert J. Zeiger
CabinetAt Checkout Against CupMovers Good
Hello

foodspam lol

This post has been edited by Cygnus: 27 July 2006 - 09:47 AM

[xper]

pcalvert, on Jul 27 2006, 04:41 AM, said:

In addition, it would help if you would report the spam as soon as you get it. Go to spamcop.net and open a free account. But don't bother reporting any spam that is more than two days old, as it will be rejected.

Reporting the spam will make it harder for the spam to get through because the IP addresses that it is being sent from will be put on a blacklist. It will also let the ISPs know that there are customers on their networks with compromised computers-- you will be helping the unfortunate people whose computers have been infested and hijacked by these parasites.

Phil

Thanks. Will be added to announcement.

[playsafe]

Well,

Something I learnt after this, is not to use my primary email address for registering on public forums. I was wondering about the best practice.

Wether to use a separate email address for each forum Or to use One email address for all the public forums we register on.

IMO, one email address should do it for all the forums. Any suggestions?

And again i believe and agree with @Cygnus, that this kind of stuff happens, and MSFN is not to be blamed for anything related to this. Also thumbs up for MSFN to acknowledge it.

[HyperHacker]

When exactly was this exploit used? I've been getting these types of messages for months.