On Thu, 26 Sep 2019, Amir Caspi wrote:
On Sep 26, 2019, at 10:18 AM, John Hardin <jhar...@impsec.org> wrote:
Some of those are following a pattern I've recently noticed - fairly obviously
bogus spamvertising domain URLs with some .gov URLs thrown in as well. I'm
assuming that's an attempt to leverage naïve domain whitelisting. One has a
Humane Society URL, I presume the goal is similar.
Although they may not be in the spamples I provided, I've also seen .edu links.
Yeah, I'm starting to see those too. Added __URI_DOTEDU to see what it's
worth.
--
John Hardin KA7OHZ http://www.impsec.org/~jhardin/
jhar...@impsec.org FALaholic #11174 pgpk -a jhar...@impsec.org
key: 0xB8732E79 -- 2D8C 34F4 6411 F507 136C AF76 D822 E6E6 B873 2E79
-----------------------------------------------------------------------
Our politicians should bear in mind the fact that the American
Revolution was touched off by the then-current government
attempting to confiscate firearms from the people.
-----------------------------------------------------------------------
3 days until the 78th anniversary of the massacre at Babi Yar
Disarmament enables genocide - Registration enables disarmament