Social media networks are a major resource for both small and big businesses that are looking to promote their brands on the Internet. And figuring out the most popular social media sites for the audience you are trying to reach is extremely important.
That's a bit of a relative term though because whilst I've loaded "big" spam lists into Have I been pwned HIBP beforethe largest to date has been a mere m records and belonged to River City Media. The one I'm writing about today is m records which makes it the largest single set of data I've ever loaded into HIBP.
Just for a sense of scale, that's almost one address for every single man, woman and child in all of Europe. This blog posts explains everything I know about it. During our communication over the last week, I had a read of his piece on Spambot safari 2 - Online Mail System which is a good example of the sort of work he's been doing it's also a good example of how dodgy some of this spammer code is!
He went on to explain how he'd located a machine used by the "Onliner Spambot" and pointed me to a path on an IP address with directory listing enabled: I've obfuscated a bunch of info here because as of the time of writing, the server is still up and I don't want to give away any information that could result in the data being spread further.
The IP address is actually based in the Netherlands and Benkow and I have been in touch with a trusted source there who's communicating with law enforcement in an attempt to get it shut down ASAP.
Until that time, I'm not going to share file names in their entirety although I'll certainly describe anything of relevance in them.
Before I dive into the data, Benkow has posted a dedicated piece on the mechanics of this spambot that's worth a read.
You can also find a great story on ZDNet from Zack Whittaker which is a good overview of the situation.
The gap I want to fill here is to explain what I can about the data because there'll be a very large number of people finding themselves on HIBP and wondering what an earth is going on.
If you haven't already read Benkow's piece, there's 2 important classes of data you need to understand: That's it - just masses and masses of email addresses used to deliver spam to. In some cases, a single file may contain tens or even hundreds of millions of addresses. Email addresses and passwords.
Benkow explains that these are used in an attempt to abuse the owners' SMTP server in order to deliver spam. I also believe that many of these may simply be aggregations from various other breach sources I'll talk about a little later on. Getting on to the data itself, the first place to start is with an uncomfortable truth: That first file is the 14GB one from the earlier directly listing whilst the second is MB.
In many cases, I found the same data in both the former larger file and a subsequent smaller one. Interestingly, as you can see from the suffix above, both refer to "UK" I'm certainly not from the United Kingdom whilst others refer to "AU" although I'm not in there.
There are no other 2 letter country codes represented in the file names but clearly when we're talking many hundreds of millions of addresses here, a heap of them are from other locations so take those suffixes with a grain of salt.
This email address is used to send notifications relating to the "E-Tag" device installed on your car windscreen so that you can pay tolls. I know this because I've received a bunch of them in the past: I'll take a stab at it and say that there's not many legitimate drivers using the New South Wales toll road system with Russian email addresses!
Clearly, the constant alias on every one of these accounts is auto-generated. I received a domain alert on this one.
Went through the process, turned out to be an invented address sales domain. The first file is the same one my own email address was in and the second is the same file name structure albeit with a different number in it.View Jessica Robinson’s profile on LinkedIn, the world's largest professional community.
Jessica has 3 jobs listed on their profile. Service Partnership Manager at Australia Post. Australia Post. University of Canberra.
Video Writing: Using Humor to Communicate and Persuade. Viewers: LinkedIn Profile Writing AND LinkedIn Workshops, Presentations, Webinars & More Donna Serdula provides entertaining, "take action" workshops, keynotes, and presentations to groups, associations, and companies across the United States.
Learn about working at LinkedIn Profile Writing Service. Join LinkedIn today for free. See who you know at LinkedIn Profile Writing Service, leverage your professional network, and get hired. “Career Management Services’ LinkedIn writing service is individually designed to build your profile, increase your networks, career and business opportunities.” Our professional linkedIn writing service will make sure get noticed with a personal brand and profile .
We provide all-encompassing Linkedin profile building services from Linkedin optimization services, LinkedIn profile writing, to uploading your optimized LinkedIn profile to LinkedIn for you.
We pride ourselves on providing you with a LinkedIn profile that you are proud to have represent you online. The drama about conversion therapy is a showcase for the actor who excels at boy-next-door roles.