Hey Jaroslaw Rafa, On 27.03.25 21:55, Jaroslaw Rafa via mailop wrote: > However I wonder - and here I'm looking for your opinion - what can be a > possible gain for the attacker from such an attack? The form does not have > any field to enter own information that could be passed to the recipient - > just login, password and email - so all the recipient gets is a standard > message saying that someone registered an account named XYZ on my website > using their email address, and if they want to confirm it, they should click > the link, otherwise do nothing and the registration will expire in 24 hours. > How can anyone benefit from spamming people with such messages?
Do that on a few hundred different sites with the same addresses and you can annoy the heck out of someone. Regards, Thomas Walter -- Thomas Walter Datenverarbeitungszentrale FH Münster - University of Applied Sciences - Corrensstr. 25, Raum B 112 48149 Münster Tel: +49 251 83 64 908 Fax: +49 251 83 64 910 www.fh-muenster.de/dvz/
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ mailop mailing list [email protected] https://list.mailop.org/listinfo/mailop
