Re: [funsec] Fwd: Subscriber Deleted
Wow, US-CERT still exists. ---rsk ___ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Re: [funsec] Fwd: Subscriber Deleted
No..in fact I received a US-CERT advisory a couple of weeks ago on a recent issue and thought it odd that the issue they spoke to wasn't at least a month or two old. Sent from my Verizon Wireless 4G LTE smartphone Original message From: Jeffrey Walton Date:03/13/2015 17:59 (GMT-05:00) To: FunSec List Subject: [funsec] Fwd: Subscriber Deleted Did anyone else get this? I did not cancel my subscription, and I'm interested in knowing whether this is phishing, maintenance or someone gaming the system. -- Forwarded message -- From: US-CERT Date: Thu, Mar 12, 2015 at 8:00 PM Subject: Subscriber Deleted To: noloa...@gmail.com Welcome, You have made the following changes to your US-CERT subscriber preferences. Your subscriber preferences for US-CERT have been deleted. You will no longer receive email from US-CERT at this address. If this change was made in error, click here to sign up again. OTHER RESOURCES: Contact Us | Security Publications | Alerts and Tips | Related Resources STAY CONNECTED: SUBSCRIBER SERVICES: Manage Preferences | Unsubscribe | Help This email was sent to noloa...@gmail.com using GovDelivery, on behalf of: United States Computer Emergency Readiness Team (US-CERT) · 245 Murray Lane SW Bldg 410 · Washington, DC 20598 · (888) 282-0870 ___ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Re: [funsec] Fwd: Subscriber Deleted
Hi all, Jeffrey Walton wrote: > Did anyone else get this? I did not cancel my subscription, and I'm > interested in knowing whether this is phishing, maintenance or someone > gaming the system. > [...] FWIW, I've not received anything similar, and I am subscribed to a couple of US-CERT mailing lists. Notice that the "click here" link is: https://public.govdelivery.com/accounts/USDHSUSCERT/subscriber/new which is very similar (though why not also HTTPS?) to the "Manage Preferences" link a little lower in the message: http://public.govdelivery.com/accounts/USDHSUSCERT/subscribers/new?preferences=true _That_ link is the same as I see in messages from my US-CERT list subscriptions, so I don't see how there can be any phishing intentions here (unless the perps fat-fingered things and did not change the URLs from the real US-CERT message they used as their template? I have seen that once or twice with real (PayPal?) phish...). The other links seem to be the same from a quick eyeballing of your message and US-CERT ones I've received. Regards, Nick FitzGerald ___ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Re: [funsec] Fwd: Subscriber Deleted
On 14/03/2015 00:31, Nick FitzGerald wrote: https://public.govdelivery.com/accounts/USDHSUSCERT/subscriber/new http://public.govdelivery.com/accounts/USDHSUSCERT/subscribers/new?preferences=true subscriber != subscriber_*s*_ Ciao Remo ___ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
