eric at ...15503...
Tue Jan 29 20:57:39 EST 2013
On Tue, Jan 29, 2013 at 4:10 PM, waldo kitty <wkitty42 at ...14940...>
> On 1/29/2013 15:02, Jeff Jarmoc wrote:
> > Obfuscated redirect to
> yeah, i don't know what they are doing, either, but i've seen quite a few
> these types of postings... they are easily recognized by their subject line
> containing only "Fwd:" and nothing else...
> i'm suspecting that they might be looking for specific connections to
> infectious processes... "they" are getting smarter and narrowing their
> which also assists them in avoiding researchers from determining what they
> doing and how they are doing it :?
> > That site in turn gives a 302 to pinterest. Weird that it doesn't seem
> to do
> > anything; maybe it's fingerprinting browsers?
I find it hilariously appropriate that a spam posting to a mailing list
results in analysis and discussion on the URL contained in said spam
message... guess that's what you get when you post spam to Snort-users :0)
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Snort-users