Australian online ticketing service Tickemaster has been hit by a phishing raid that has defeated Spam filters. Several Reg readers report receiving multiple emails yesterday (Vulture South received nine), all purporting to report newly-purchased tickets. The messages evaded Spam filters, although Gmail has since re-classified …
Saw these hitting spamtraps yesterday...
...and had to laugh. There was no payload - all the links in them were to ticketmaster's website. At least, they were in the examples I saw.
These particular ones aren't too hard to keep out - after the fact. Turns out there are some trivial checks you can do based on Ticketmaster's envelope-sender address format for legitimate transactional emails. Unfortunately, though, it's the kind of thing where you don't know you need a simple new new rule until the spew starts flooding in.
I don't know why the spammers would bother phishing
Ticketmaster store passwords in plaintext, may as well focus your efforts on lifting the DB.
- Bugger the jetpack, where's my 21st-century Psion?
- Something for the Weekend, Sir? Why can’t I walk past Maplin without buying stuff I don’t need?
- Review 'Mommy got me an UltraVibe Pleasure 2000 for Xmas!' South Park: Stick of Truth
- The land of Milk and Sammy: Free music app touted by Samsung
- Privacy warriors lob sueball at Facebook buyout of WhatsApp