IMPORTANT! Have you received an email to your forum username?

anewman

More "fake" MSE spam? The e-mail address looks suitably suspicious.

Return-path: <expert@moneysavingpromos.co.uk>
Envelope-to: (deleted)
Delivery-date: Thu, 10 Feb 2011 05:45:14 +0000
Received: from 184-106-248-233.static.cloud-ips.com ([184.106.248.233]:56404 helo=parrot.freebiegifts.co.uk)
by (deleted) with esmtp (Exim 4.69)
(envelope-from <expert@moneysavingpromos.co.uk>)
id 1PnPLW-0008Im-IA
for (deleted); Thu, 10 Feb 2011 05:45:14 +0000
Received: from localhost.localdomain (localhost [127.0.0.1])
by parrot.freebiegifts.co.uk (Postfix) with ESMTP id 9A048E6947
for <deleted>; Thu, 10 Feb 2011 05:45:35 +0000 (UTC)
Date: Thu, 10 Feb 2011 05:45:35 +0000
From: expert@moneysavingpromos.co.uk
To: (deleted)
Message-Id: <4d537b7f9872d_24ba3ff7797459b8181457db@smtp1.expansive.parrot.outsidethe.net.tmail>
Subject: Free Justin Bieber Gifts & Prem Tickets
Mime-Version: 1.0
Content-Type: text/html; charset=utf-8

BTW I believe the spammer's IP address is 184.106.248.233 (the other domain names are faked). A whois lookup reveals the e-mail address to complain to is abuse @ rackspace.com.

Premier_2

anewman wrote: »

...BTW I believe the spammer's IP address is 184.106.248.233 (the other domain names are faked). A whois lookup reveals the e-mail address to complain to is abuse @ rackspace.com.

What makes you think anything is forged? The two domains exist (and belong to the same person/organisation) and they offer Bieber products on their website.

Rackspace.com is a well known large hosting company. The domains are registered through Webfusion (the same company that owns 123-reg.co.uk) ... but may ultimatly be hosted on rackspace server (I've not bothered to dig into this to confirm)

faeraemae

Hi, very sleepily responded to pop up box informing me of new message (can not remember exactly)
was asked if I wanted to open in new window, said yes but nothing happened. (hopefully!)

I then went went to my messages and read the warning ~ will be more vigilant, thank you.

(pre 2010)

Peace, Love & Light

meher

not strictly related to this email issue but this site is protected by rapport I think

look

Premier_2

meher wrote: »

not strictly related to this email issue but this site is protected by rapport I think

look

The site itself is not actually protected by rapport.

But if you have rapport (many of the banks offer it, or you can download it from the trusteer website), then you can protect any website that uses a login with it

I'm not sure what it does other than checks you are not putting an id/password onto a different site that it thinks you should be using. e.g. a phishing attack.

Grabbit_2

Looks like the site is still open to spamming !!!
I received a message on the 26th of July 2011 that by today had been "conveniently" wiped out from my MSE message box and replaced with a message "allegedly" sent to me by MSE on the 18th of Oct 2010.
Someone from MSE needs to come clean here I think. Perhaps proactively telling users by email that it has been hacked would be a good start. I smell a story here.

Pound

Grabbit wrote: »

Looks like the site is still open to spamming !!!
I received a message on the 26th of July 2011 that by today had been "conveniently" wiped out from my MSE message box and replaced with a message "allegedly" sent to me by MSE on the 18th of Oct 2010.
Someone from MSE needs to come clean here I think. Perhaps proactively telling users by email that it has been hacked would be a good start. I smell a story here.

I think you're letting your imagination run away with you. MSE have already admitted that they had a security breach that meant their email addresses were leaked.

I think the idea that someone is continuing to hack MSE to send messages, delete things from inboxes and and replace them with something else is a bit far fetched. For what purpose would anyone do this?

mel_mel

Hiya Just got your pop up about this message and the answer is no, never received anything with my name on, just the weekly email telling me of new newsletter.