dracula/lvacula.com-blog
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

subdomailing

Browse Source
This commit is contained in:
Lukas Vacula 2024-02-27 07:55:31 -05:00
parent 314132be2c
commit 81d5ab53c7
1 changed files with 13 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
content/shortnotes/subdomailing-campaign/index.md Normal file
View File

@ -0,0 +1,13 @@
+++
title = "SubdoMailing Campaign"
# description = ""
date = 2024-02-27
# updated = 2024-02-27
#draft = true
[taxonomies]
tags = ["shortnotes"]
+++
I came across this while reading my RSS feeds this morning: there's a new ad fraud campaign that is using insecure domains from big names like VMware and Marvel. But the interesting thing for me isn't the names attached, but that it seems so simple of an attack: look for outdated and unregistered domains, and use their existing presence in other companies mail records to bypass spam filters.
[Relevant link to Bleeping Computer article](https://www.bleepingcomputer.com/news/security/hijacked-subdomains-of-major-brands-used-in-massive-spam-campaign/)