« Google Trends as an IDS | Main | Social Network Phishing »

Unusual blog spam vector exploited

Security Blog MCWResearch was hit by a large amount of spammy posts over the past day. It turns out the blog allowed posting via e-mail, and this feature has been subsequently disabled. I wouldn't be surprised if we see an enterprising spammer search for populations of e-mail to blog gateways. They can use their preexisting infrastructure to push spam into a new direction. Remediation for the population would be trivial, as e-mail-to-post functionality is not critical for the functioning of blogs.

Lesson learned: don't allow unauthenticated access to services unless you are required to do so (inbound MTAs, public web servers, etc).

Post a comment

(If you haven't left a comment here before, you may need to be approved by the site owner before your comment will appear. Until then, it won't appear on the entry. Thanks for waiting.)

About

This page contains a single entry from the blog posted on March 22, 2008 11:48 AM.

The previous post in this blog was Google Trends as an IDS.

The next post in this blog is Social Network Phishing.

Many more can be found on the main index page or by looking through the archives.

Powered by
Movable Type 3.33