host ns-73.awsdns-09.com
205.251.192.73
Seems seeing an increased 'backscatter' from these servers, used maybe
as a method to spread phishing materials..
Shows them as Exim servers, but no idea what those servers are meant to
be doing? the dns reflection in the names suggest it isn't really meant
to be mail servers?
Anyone with any details? The phishing appears to be coming via
authenticated connections to those servers..
Received: from v-192-223-25-73.unman-vds.premium-seattle.nfoservers.com
([192.223.25.73]:63989)
by ns-73.awsdns-09.com with esmtpsa (TLS1.3) tls TLS_AES_256_GCM_SHA384
(Exim 4.96)
--
"Catch the Magic of Linux..."
------------------------------------------------------------------------
Michael Peddemors, President/CEO LinuxMagic Inc.
Visit us at http://www.linuxmagic.com @linuxmagic
A Wizard IT Company - For More Info http://www.wizard.ca
"LinuxMagic" a Registered TradeMark of Wizard Tower TechnoServices Ltd.
------------------------------------------------------------------------
604-682-0300 Beautiful British Columbia, Canada
This email and any electronic data contained are confidential and intended
solely for the use of the individual or entity to which they are addressed.
Please note that any views or opinions presented in this email are solely
those of the author and are not intended to represent those of the company.
_______________________________________________
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
