My apologies. The samples that I have contain email addresses that I am not at liberty to share without redacting. If it's okay that there are certain strings that are removed, I should be able to make them available. Is there a preferred method for getting this to you?
On Wed, Oct 11, 2023 at 9:25 PM Bill Cole <sausers-20150...@billmail.scconsult.com> wrote: > > On 2023-10-11 at 16:45:15 UTC-0400 (Wed, 11 Oct 2023 16:45:15 -0400) > Ricky Boone <ricky.bo...@gmail.com> > is rumored to have said: > > > Just a heads up, it appears that usssa[.]com has had their SendGrid > > email sending account popped, and a bad actor has been sending > > phishing emails from it. The domain is defined in > > 60_welcomelist_auth.cf with def_welcomelist_auth/def_whitelist_auth > > entries with *@*.usssa.com. > > If anyone has a shareable sample spam to substantiate this, that would > be helpful. > > -- > Bill Cole > b...@scconsult.com or billc...@apache.org > (AKA @grumpybozo and many *@billmail.scconsult.com addresses) > Not Currently Available For Hire