Computer Cops - Nigerian Scam Artist using PHPNuke sites to spam

New User? Click here to register! Feel free to read this for beginners help.

	Prime Choice

	· Head Lines · Dnld of the Week! · Find a Cure! · Ian T's (Article 13) · Marcia's (Op9) · Paul's (Article 3) · Ian T's Archive · Marcia's Archive · Paul's Archive

	Security Central

	· Home · Wireless · Bookmarks · Columbia · Community · Downloads · Encyclopedia · Feedback (send) · Forums · Gallery · Giveaways · HijackThis · Journal · Members List · My Downloads · PremChat · Premium · Private Messages · Proxomitron · Quizz · Recommend Us · RegChat · Reviews · Search · Sections · Statistics · Stories Archive · Submit News · Surveys · Top · Topics · Web Links · Your Account

	CCSP Toolkit

	· Email Virus Scan · UDP Port Scanner · TCP Port Scanner · Trojan TCP Scan · Reveal Your IP · Algorithms · Whois · nmap port scanner · IPs Banned [?]

	Search

Survey

Which Anti-Virus product do you use?

	Computer Associates
	Eset (NOD32)
	F-Secure
	Frisk (F-Prot)
	Grisoft (AVG)
	Kaspersky
	Network Associates (McAfee)
	Panda
	Sophos
	Symantec (NAV)
	Trend Micro
	Other

Results
Polls

Votes: 9816
Comments: 95

	Donations

Translate

	Hosted By

	Computer Cops is a satisfied customer of [ JaguarPC ]

phpnuked: Beware!: Nigerian Scam Artist using PHPNuke sites to spam

Anonymous writes "

Nigerian Scam Artist using PHPNuke sites to spam.

Over the past 15 days I have been tracking a user who has been using PHPNuke's 'Webmail' module to send UCE (spam) messages

If you have your Webmail module set to be able to send mail you should be aware of this person who has been signing up using names like lottocoordinator, programcoordinator, goldenlotto and like names. The person is using Yahoo and Yahoo.Co.Uk e-mail addresses to setup the accounts and then once verified logs into your system and begins sending hundreds of messages. The person doing it has been tracked down to Italy on an .it domain.

If users have the Webmail module enabled to send mail you may want to keep an eye out for this person for since we caught them and blocked them from our Class C it is likely they will just find new Nuke sites in which to continue their abuse. "

Posted on Friday, 26 March 2004 @ 14:52:19 EST by phoenix22

	Login

	Nickname Password · New User? · Click here to create a registered account.

	Related Links

	· TrackBack (0) · PHP HomePage · Linux Artist · PHP-Nuke · HotScripts · W3 Consortium · Spam Cop · More about PHP-Nuke · News by phoenix22 Most read story about PHP-Nuke: Brazilian Hackers Defy Nuke Community

	Article Rating

	Average Score: 0 Votes: 0 Please take a second and vote for this article:

	Options

	Printer Friendly Page Send to a Friend

"Login" | Login/Create an Account | 2 comments | _SEARCHDIS

Threshold

The comments are owned by the poster. We aren't responsible for their content.

Re: Nigerian Scam Artist using PHPNuke sites to spam (Score: 1)
by Paul on Sunday, 28 March 2004 @ 09:29:49 EST
(User Info | Send a Message | _JOURNAL) http://COMPUTERCOPS.BIZ

Webmail has issues about it, including the ability for mailattach.php to traverse the file system and make confidential files open to the public.

[ Reply to This ]

Re: Nigerian Scam Artist using PHPNuke sites to spam (Score: 0)
by Anonymous on Monday, 29 March 2004 @ 19:02:45 EST

For sure, I would think a worthy secure webmail option (or at least a SSL session) would be a better idea, than just using phpnuke webmail module 'out of the box'.

J.

[ Reply to This ]


	Home · Topics · Submit News · Top 10 This entire site, Cops Themes, and Computer Cops are © 2002 - 2004 Computer Cops, LLC. All rights reserved. You can syndicate our news using the file RSS 0.91, ultramode.txt, or RSS 1.0. Acceptable Use Policy. Use signifies your agreement. Engine Copyright © 2002 by PHP-Nuke, GNU/GPL Licensed. ICRA Member. Paul Laudanski, Member of Computer Cops, LLC Server Load: 808 pages served in previous 5 minutes. Page Generation: 0.510 seconds.