Todd Holley Posted July 17, 2009 Share Posted July 17, 2009 I've been getting a few emails from dark star today and I have never had any services there. I put in a ticket about it and was told that they are getting spammed somehow.... anyone care to explain how this happens? It appears to be coming through kayako... Link to comment Share on other sites More sharing options...
[MyIS]Dan Posted July 17, 2009 Share Posted July 17, 2009 If they had a online support page that just puts a ticket into their system and you have to put a reply email in, who ever was spamming it could put your email address in as the reply to email. Looking at their support portal, you need to register now to put a ticket in. Link to comment Share on other sites More sharing options...
HGN-Daniel Posted July 17, 2009 Share Posted July 17, 2009 Something similar happened with CAL a year or two back - someone was sending out spam emails through their domain. Probably an exploit in kayako or one of their scripts (although that still wouldn't explain why they had your email in the first place). It's amazing that such a large company with tens of thousands of customers has had such a bad year security wise.. Link to comment Share on other sites More sharing options...
HIS-MOTHER Posted July 17, 2009 Share Posted July 17, 2009 Might be why Kayako released a security update today? Link to comment Share on other sites More sharing options...
Derek Posted July 17, 2009 Share Posted July 17, 2009 Might be why Kayako released a security update today? Dam, my upgrades just expired lol. Link to comment Share on other sites More sharing options...
Nobis-Brett Posted July 22, 2009 Share Posted July 22, 2009 Todd, I believe that we explained to you that the e-mail had been sent to you from a system that's not even on our network (ARIN: 65.55.34.17). Just thought I'd chime in here. We're running the latest version of Kayako, too, and it's not connected using LoginSharing. I don't think this has anything to do with Kayako though, but figured I'd mention we are running the latest version since security was brought up and Kayako did indeed make a new release on that day. Link to comment Share on other sites More sharing options...
jcroom Posted July 24, 2009 Share Posted July 24, 2009 it came from a hotmail server ? lol root@whitebox [/home/justin]# tracert 65.55.34.17 traceroute to 65.55.34.17 (65.55.34.17), 30 hops max, 40 byte packets 2 69.65.16.165 (69.65.16.165) 0.403 ms 0.454 ms 0.519 ms 3 so2-0-0-0.er1.Chi1.Servernap.net (69.39.239.169) 2.125 ms 2.214 ms 2.284 ms 4 ge-6-20.car1.Chicago1.Level3.net (4.79.65.49) 2.055 ms 2.129 ms 2.200 ms 5 ae-32-56.ebr2.Chicago1.Level3.net (4.68.101.190) 14.958 ms 14.957 ms 14.951 ms 6 ae-5.ebr2.Chicago2.Level3.net (4.69.140.194) 2.276 ms 2.624 ms 2.620 ms 7 ae-2-2.ebr2.Washington1.Level3.net (4.69.132.70) 20.027 ms 20.410 ms 20.395 ms 8 ae-92-92.csw4.Washington1.Level3.net (4.69.134.158) 31.714 ms 31.712 ms 30.891 ms 9 ae-31-99.car1.Washington3.Level3.net (4.68.17.199) 31.845 ms 31.831 ms 31.820 ms 10 MICROSOFT-C.car1.Washington3.Level3.net (4.71.204.14) 28.525 ms 28.578 ms 28.684 ms 11 ge-7-3-0-56.ash-64cb-1a.ntwk.msn.net (207.46.47.103) 28.351 ms 28.080 ms 28.095 ms 12 ge-6-1-0-0.bl2-64c-1a.ntwk.msn.net (207.46.43.5) 28.646 ms 28.375 ms 28.417 ms 13 ge-0-0-0-0.bl2-64c-1b.ntwk.msn.net (207.46.43.85) 28.659 ms 28.523 ms 28.532 ms 14 207.46.43.101 (207.46.43.101) 71.186 ms 71.144 ms 71.150 ms 15 col0-omc1-s7.col0.hotmail.com (65.55.34.17) 71.054 ms 70.875 ms 70.857 ms Link to comment Share on other sites More sharing options...
JasonF Posted July 26, 2009 Share Posted July 26, 2009 How do you know they just did not use Dark Star's return address for the spam? Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.