Yeah, but doesn't really look like a replay attack..
If it is.. it is a broken one..
eg..
Received: from we.love.servers.at.ioflood.net (HELO
we.love.servers.at.ioflood.net) (162.213.210.2)
by *** with (ECDHE-RSA-AES256-GCM-SHA384 encrypted) SMTP
(35ef20ac-eacb-11ec-9fd6-fffb8188a5a9); Sun, 12 Jun 2022 20:45:05 -0700
Received: from [216.38.8.191] (port=57551 helo=veeble.org)
by silverlode.awsdns-33.com with esmtpsa (TLS1.2) tls
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
(Exim 4.95)
(envelope-from )
id 1o0b0i-000FcN-4R;
Sun, 12 Jun 2022 20:45:04 -0700
From: SpamCop - Sergey Fedyushkin
To:
Subject: [SpamCop Abuse Report 172.66.40.177) id: 451083686] Spam
Only clue it might be, is the friendly name is the same for all of them,
no matter what the source/sender address.
On 2022-06-13 08:34, Richard W via mailop wrote:
I suspect this is a virus that is pulling subject lines and email
addresses from the infected computer and sending the spam to those. I've
heard of quite a few receiving 'spamcop' related ones.
I've been receiving a number from other various abuse and role addresses
with different subjects for a few week. Usually has a attachment, I
suspect trying to spread itself.
And the report numbers in the links are so old I can't even look up when
they were sent or to who. We only hang on for 90 days.
Richard
On 2022-06-13 9:10 a.m., Michael Peddemors via mailop wrote:
Real strange, fake abuse addresses..
ab...@singlehop.com
abuset...@veeble.org
Spamcop links are to 404..
Just not sure how the content can be malicous, maybe it is just a
broken system over the weekend?
Reporting one of our addresses as the authenticated address, but shows
it coming from a CloudFlare IP.. And looks to have forged information.
Any one else notice it over the weekend?
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
--
"Catch the Magic of Linux..."
Michael Peddemors, President/CEO LinuxMagic Inc.
Visit us at http://www.linuxmagic.com @linuxmagic
A Wizard IT Company - For More Info http://www.wizard.ca
"LinuxMagic" a Registered TradeMark of Wizard Tower TechnoServices Ltd.
604-682-0300 Beautiful British Columbia, Canada
This email and any electronic data contained are confidential and intended
solely for the use of the individual or entity to which they are addressed.
Please note that any views or opinions presented in this email are solely
those of the author and are not intended to represent those of the company.
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
