Australian online ticketing service Tickemaster has been hit by a phishing raid that has defeated Spam filters. Several Reg readers report receiving multiple emails yesterday (Vulture South received nine), all purporting to report newly-purchased tickets. The messages evaded Spam filters, although Gmail has since re-classified …
Saw these hitting spamtraps yesterday...
...and had to laugh. There was no payload - all the links in them were to ticketmaster's website. At least, they were in the examples I saw.
These particular ones aren't too hard to keep out - after the fact. Turns out there are some trivial checks you can do based on Ticketmaster's envelope-sender address format for legitimate transactional emails. Unfortunately, though, it's the kind of thing where you don't know you need a simple new new rule until the spew starts flooding in.
I don't know why the spammers would bother phishing
Ticketmaster store passwords in plaintext, may as well focus your efforts on lifting the DB.
- Analysis iPhone 6: The final straw for Android makers eaten alive by the data parasite?
- First Crack Man buys iPHONE 6 and DROPS IT to SMASH on PURPOSE
- TOR users become FBI's No.1 hacking target after legal power grab
- Vid Reg bloke zips through an iPHONE 6 queue from ZERO to 60 SECONDS
- Analysis Why Oracle CEO Larry Ellison had to go ... Except he hasn't