Slashdot Mirror
BlueSecurity Database Compromised?
Stray1 writes ""You are recieving this email because you are a member of BlueSecurity...." An email from unknown detractors has taken the Bluesecurity anti spam lists and decided to take matters into their own hands. I recieved this Email from an anonymous, and garbled host, which went on to say in not so fantastic english that I, as a Blusecurity member, would recieve this and many more (about 20 -30) spam messages a day until I left the blue security community. Blue Security, (www.bluesecurity.com)a website and community designed to lessen your Spam Email, is down for the moment. Is this what we have come to? Spam,(erm 'high volume email') companys holding your address hostage until you comply? "...We mightve had your email addresses before in our lists, but now, we are targetting YOU, because YOU are a bluesecurity user". I have to say, up until this point, my spam was down by about 70% to 80%."
I guess their server feels "blue" too..
Blue Security to systematically flood a known spammer's website with opt-out messages; much to the headache of the spammer.
And by flood I taeke it you mean spam
When will the world learn, violence begets violence and spam begets spam. Lets find a real solution to the problem rahter then a vigalante justice.
If they're able to do so, what will stop them from *not* spamming you in the future anyway? Their ethics, integrity or your stupidity?
What the hell does 20 or 30 messages mean? Nothing at all to me. I reject anywhere from 20 to 40 THOUSAND emails daily, on a domain with precisely two email users: My wife and me. The vast majority of the crap I get is easily rejected because it's sent to bogus (as in, they never ever existed) email addresses. SpamAssassin catches much of the rest.
It was a joke! When you give me that look it was a joke.
We really need to take the internet back from these guys. Reply to every spam e-mail by going to their web site, and filling out bogus info. Give them bad information overload. Same thing goes for junk mail and telemarketers. When somebody sends you a credit card offer, send it back to them, writing "Take me off your list". Make sure they have to waste so much time throwing out bad mail that it isn't worth their time. When telemarketers call, ask them to hold on a minute. Then set down the phone and don't pick it up again for 10 minutes. That will dig into their costs.
Taking guns away from the 99% gives the 1% 100% of the power.
Yes, Let's kill the spammers.
Pretty soon the spammers will be conducting unrestricted submarine attacks on civilian shipping in the North Atlantic.
Who do you get to be an expert to tell you something's not obvious? The least insightful person you can find? -J Roberts
BlueFrog has been criticised for it's so-called "vigilante" approach.. it's not alone in this approach, but perhaps this does go to show a potential downside: spammers are evil - pissed off spammers will simply direct the evil at the people who pissed them off.
Never email donotemail@WeAreSpammers.com
It did seem odd to me that my spam per day count had actually gone up in the last few weeks. I'm not unsubscribing though if they've got my address they've got it may as well keep flooding the scum.
So, if I got this right, the spammers that are getting spammed are now spamming the spammers? Sounds like a flying circus to me!
The sky above the port was the color of television, tuned to a dead channel...
What do we do? I'm getting just what they said -- about 50 emails since they started last night. I can't even get to bluesecurity.com to unsubscribe if I wanted to. I can handle 50 or so I suppose and want to continue to support BS (hmmm...) but what would you do?
I was wondering when this was going to get reported. Its funny I checked this about 5 minutes ago and it wasnt here yet. The same email landed in my mailbox yesterday and since yesterday afternoon i've been floded with spam definitly by the same group. Looks like they are probably being dosed off the face of the earth as well. That or they closed shop and ran :) although I doubt that. Seemed like a great service.
I suppose when you go after the type of people that run spaming bot networks you gotta expect things like this to happen.
If so, I have to complain about the "New Apple Campaign" item. "In one of the ads the PC repeat itself several times" and "In an other one (and maybe the most aggressive of all) PC is sick because of a virus, while Mac is healthy" fall far short of the mark.
What I'm listening to now on Pandora...
I'm sure that we're all interested in what these people have to sell... also that would probably cause a massive slashdotting.
My sig is too lon
Did they really expect the spammers to just sit there and not retaliate? It's been proven time and time again that spammers will go to any length to spam without regard to the law.
Did anybody else get a powerful urge to install the client on as many machines as possible?
I can handle the increase in spam, I hardly ever see it anyway ( thank you spamassassin+bayes+RBL+spamhaus ).
Mod me down with all of your hatred and your journey towards the dark side will be complete!
If you want to opt out, surely you need to specify YOUR address to the spammer.
If 10,000 people all from around the world using this software all suddenly swamp the spammer with "Unsubscribe me" then the spammer has the list of users?
Forgive me for being a bit thick if this isn't how it works.
liqbase
Below is an email that I received, which pretty much confirms that they have been hacked.
----
You are being emailed because you are a user of BlueSecurity's well-known software "BlueFrog." http://www.bluesecurity.com/
Today, the BlueSecurity database became known to the worst spammers worldwide. Within 48 hours, the database will be published on the Internet, and your email address will be open to them all. After this, you will see the spam sent to your mailbox increase 10 - 20 fold.
BlueSecurity was illegally attacking email marketers, and doing so with your help. Many websites have been targeted and hit, including non-spam sites. BlueSecurity's software has been fully analyzed, and contains an abundance of malicious code. This includes: ability to send mass mail to users; the ability to attack websites with Distributed Denial of Service attack (DDoS); the ability to open hidden doors on any machine on which it is running; and a hidden auto-update code function, which can install anything on your computer and open it up to anyone.
BlueSecurity lists a USA address as their place of business, whereas their main office is in Tel Aviv. BlueSecurity is run by a few Russian-born Jews, who have previously been spamming themselves. When all is said and done, they will be able to run, hide and change their identities, leaving you to take the fall. YOU CANNOT PARTICIPATE IN ILLEGAL ACTIVITIES and expect to get away with it. This email ensures that you are well aware of the situation. Soon, you will be found guilty of computer crimes such as DDOS attacking of websites, conspiracy, and sending mass unsolicited bulk email messages for everything from viagra to porn, as long as you continue to run BlueFrog.
They do not take money for downloading their software, they do not take money for removing emails from their lists, and they have no visible revenue stream. What they DO have is 500,000 computers sitting there awaiting their next command. What are they doing now?
1. Using your computer to send spam ?
2. Using your computer to attack competitor websites?
3. Phishing through your files for your identity and banking information?
If you think you can merely change your email address and be safe while still running BlueFrog, you are in for a big surprise. This is just the beginning...
A community-oriented lyrics site
All the best with it.
She's built like a steak house, but she handles like a bistro....
I noticed a calpoly.edu address in the header, so I sent a copy of the message to abuse@calpoly.edu. Who knows whether it will matter?
If the spammers have managed to steal the BlueSecurity e-mail database, this may have happened some time ago. I've registered two e-mails to their database during the past two weeks and I have not received any mail from any spam group threatening me.
Slashdot, a small website which once viewed on the users computer, enables teh Intarweb to systematically flood Blue Frog's website with web traffic; much to the headache of the poor frog.
I registered a few different addresses with Blue Security, and only one of them has been receiving these messages so far. It sounds like it's just some spammers that are annoyed that they can't get through and are getting reverse-spammed.
The Gmail spam filter is filtering nearly every one of these spams, only a couple out of 60+ yesturday got into my inbox. .... and every one of that bastard's spams advertising a website went right to bluesecurity to hurt his business. He's just shooting himself in the foot.
... I think that about covers the points that were lost when slashdot decided to post this boring version of the story, instead of what I submitted yesturday afternoon :)
Contrary to what the author wrote, there's closer to 475,000 members, not just a few 10's of thousands, enough that several major spammers have already agreed to not spam members due to the huge financial hits they were taking with the bluefrog choking off their websites.
What a joke, what dumbass would really believe that the spammers will not spam you if you leave blue security? Who here will admit to believing the criminals?
George Bush + Linux = "I will not let information get in the way of the fight against Windows"
Here's what I was sent:
"Hey,
You are recieving this email because you are a member of BlueSecurity (http://www.bluesecurity.com).
You signed up because you were expecting to recieve a lesser amount of spam, unfortunately, due to the tactics used by BlueSecurity, you will end up recieving this message, or other nonsensical spams 20-40 times more than you would normally.
How do you make it stop?
Simple, in 48 hours, and every 48 hours thereafter, we will run our current list of BlueSecurity subscribers through BlueSecurity's database, if you arent there.. you wont get this again.
We have devised a method to retrieve your address from their database, so by signing up and remaining a BlueSecurity user not only are you opening yourself up for this, you are also potentially verifying your email address through them to even more spammers, and will end up getting up even more spam as an end-result.
By signing up for bluesecurity, you are doing the exact opposite of what you want, so delete your account, and you will stop recieving this.
Why are we doing this?
Its simple, we dont want to, but BlueSecurity is forcing us. We would much rather not waste our resources and send you these useless mails, but do not believe for one second that we will stop this tirade of emails if you choose to stay with BlueSecurity.
Just remember one thing when you read this, we didnt do this to you, BlueSecurity did.
If BlueSecurity decides to play fair, we will do the same.
We are quite sure you will think this will not continue, that we will not continue wasting our resources doing this, feel free to wait out the first 48, or the second, and see whether these stop, you will be quite suprised.
If you have another email under the protection of bluesecurity, and have not recieved this there, do not worry, you will soon enough.
We mightve had your email addresses before in our lists, but now, we are targetting YOU, because YOU are a bluesecurity user.
You might also notice, that the BlueSecurity site(http://www.bluesecurity.com) is down..
Just remove yourself from BlueSecurity, and make it easier on you.
Sal Webber"
they prolly figured out a way to reverse hack the client and install something that goes through your address book.
Sorry if this has been discussed in the past, but what prevents recipients of spam from turning around and nuking the spammer's machine into oblivion? If you spam 10,000 machines, and then they turn around and tell you to quit it, repeatedly, until you stop, then mathematically it would seem the culprit's machine would be rapidly overwhelmed.
Do what you can, with what you have, where you are.
If BlueSecurity wasn't hurting Spammers they would ignore it. If they are fighting back it must mean that BlueSecurity is actually doing damage to them.
You are reading a copy of my copyrighted post.
they help with the chores...
every day http://en.wikipedia.org/wiki/Special:Random
WHAAAAAT?
Bluefrog HELPS SPAMMERS LISTWASH?
Holy fuck. They should say to spammers, 'No, we won't tell you who our users are. Just stop spamming everyone for whom you don't have a confirmed opt-in, and you won't have any more trouble from us.'
If they're helping spammers listwash, then they're firmly on the Dark Side. Fuck 'em.
Real Daleks don't climb stairs - they level the building.
... taken in the best possible light, the letter claims it is fighting a crime by committing another crime.
Their predicate is questionable; I don't know, and don't want to get into, whether Blue Frog is doing anything wrong. However, whoever sent the email you cite is threatening spamming if the recipient of the email fails to perform a particular act. That may be cyberterrorism under USA/PATRIOT or some similar law.
We need to put more spammers in jail by getting prosecutors to set up false-flag operations, place orders for Viagra, prosecute whoever fufills the orders, and display their heads on pikes from the city gates (... or whatever the internet equivalent may be...)
But I suppose the cops are already busy stalking pervos who solicit kids on the internet, and I must admit that's a higher priority.
--- Attorneys Assisting Citizen-Soldiers & Families -
That's it in a nutshell. This alone inspires me to create some throwaway addresses, post around the net from them, and set up us the Bluefrog.
Slashdot Burying Stories About Slashdot Media Owned
I'll bet this spammer already has your e-mail address from some other source. He checks it against the Bluesecurity DB, and if it's a positive match, he sends you the Bluesecurity-targeted spam. Since there is no web site associated with these messages (because he's not selling anything), he does not suffer any consequences for these particular messages.
If the spammers are upset enough to generate such a threatining email, then it sounds to me like it must be very effective. If it wasn't seriously cutting into their bottom line, then they wouldn't be this upset.
Plus, I like the fact that the spammers are getting their email bombed into uselessness. Maybe they will begin to understand how we normal people feel about their crap.
Who would win this election: Andrew Weiner vs Andrew Weiner's weiner.
Doesn't this piss you off? Doesn't it make you want to declare War on Spam, in the time-honoured fashion of the Bush Administration(TM)?
BlueSecurity needs YOU!
Join up today and make them pay!
According to my Mother In Law who works for the Post Office, it does!
They are quite willing to deliver such items as it helps the revenue stream. $.39 for the letter, or $5.00 for the brick. To Them its all the same, and if its wrapped in shipping paper as the original post mentioned they don't know whats inside and MUST pass it along to the receiver.
Who knows if it does or not, I am just going on her information.
I figure if anyone would know its someone who works for the post office!
If spammers begin writing to us, they'll only increase the form spam they receive.
PLUS! The blue security e-mail database contains a bogus honeypot address per each valid e-mail address.
If this rumour is true, it will be a fatal mistake for the spammers. Because the blue community are ALREADY fighting back. Not only with form complaints on the spammers' websites, but with FORMAL complaints to the FCC, geocities, Microsoft,the MPAA and the FDA about illegal offers.
I joined Blue Security because I already receive 100 spam mails PER DAY. Do you think it'll make a difference whether I receive 100 or 500 e-mails a-day? (99.9% of it is sent to my junk-mail, where it's fed back automatically to Blue Frog)
I feel no mercy for spammers. That's right, you're messing with the wrong guys. The release of this list will only make us MORE POWERFUL.
Do you feel lucky? PUNKS?
P.S. Interesting - the captcha for this post was "predate". I like it. B-)
I've been using BlueFrog for a month or two now. Normally my Yahoo account will receive no more than a half dozen spam emails daily. Yesterday I left for dinner at about 4:30, no spam. Got back to my computer about 8pm, 44 spam messages! Yahoo's spam filter caught them all, something that I cannot say for my Gmail account. It had some 15 messages in the spam folder, but a half dozen in my inbox had gotten past BlueFrog.
So yeah, I'd say something is up.
When you sympathize with stupidity, you start thinking like an idiot.
As many spammers choose to comply with the Registry (see our recent blog posts here, here and here), other spammers may resort to other means in an attempt to avoid compliance.
A major spammer had started spamming our members with discouraging messages in an attempt to demoralize our community. This spammer is using mailing lists he already owns that may contain addresses of some community members.
We have also received complaints from users about spam allegedly sent from Blue Security promoting our anti-spam solution and our web site. This is yet another tactic used by some spammers in an attempt to slander us by sending unsolicited email forged to appear as if it was sent from Blue Security. Blue Security is an anti-spam company determined to fight spam and as such never has and never will send unsolicited email.
Our answer to those criminals should be one - we will not be discouraged; We will continue to exercise our right to opt-out of spam.
If you are not a member of our community, now is the time to actively fight spam and make spammers leave you alone. For more information click here.
If you are already a member of our community, make spammers hear you load and clear - report your spam, let Blue Frog fight spammers on your behalf.
We regret any inconvenience caused by this incident.
Best Regards,
Blue Security.
This was sent out on an anti-spam list this morning:
p
http://www.bluesecurity.com/Announcements/spam.as
"A major spammer had started spamming our members with discouraging
messages in an attempt to demoralize our community. This spammer is
using mailing lists he already owns that may contain addresses of
some community members.
"We have also received complaints from users about spam allegedly
sent from Blue Security promoting our anti-spam solution and our web
site. This is yet another tactic used by some spammers in an attempt
to slander us by sending unsolicited email forged to appear as if it
was sent from Blue Security. Blue Security is an anti-spam company
determined to fight spam and as such never has and never will send
unsolicited email.
"Our answer to those criminals should be one - we will not be
discouraged; We will continue to exercise our right to opt-out of
spam.
I was unaware of bluesecurity, looks like a nice idea to fight with spam, I think it's high time for me to join them.
#
#\ @ ? Colonize Mars
#
these cretins are trying to send, I felt all the more motivated to install BlueFrog and have done so. Let them come.
...blue security takes another step, besides re-spamming the spammers sites. They also directly contact every advertiser featured in spam, asking them to stop paying these spammers because they sent emails to X number of users who arent interested. It may not be very effective, who knows. But its a great idea. If companies stopped paying for spam, it would sure dry up pretty fast, and the companies care allot more about the customers than the spammers. Im sure at least *some* companies genuinely dont even realize that the publicity firms they hired are using spam.
From what I am seeing, I am now receiving 1,000s of these stupid "Because you are using the BlueSecurity Software ...." emails .... but they are all being directed to Mike, Jan, Cindy, Lucy, Bobby, and Greg@mydomain.com .... They are NOT directed to MY email address. These addresses that they are using were ONCE entered by an ignorant relative of my onto one of those online greeting card sites, (even mispelled) and those are the addresses that are being spammed. Since I ALSO registered my DOMAIN with BlueSecurity, I would ponder to guess that the spammers are using the domain list, matching it up to ANY email they have in their spam database with that domain and spamming the heck out of it. They HAVE NOT, I repeat, HAVE NOT hit ANY of my REGISTERED email addresses with BlueSecurity. They are only hitting random crap email addresses on my domain. They're shooting in the dark, they're angry, and they're running scared ... and I hope that you all keep up the good work!
then they laugh at you...
:D
then they fight you...
then you win
One thing is safe to know: At least the spammers are now PAYING ATTENTION to us. A year ago they didn't even know we exist. Then they tried to give bad publicity to Blue Security in anti-spam websites (they said bluefrog was a botnet).
Later, SendSafe included an option to use bluefrog's list to NOT send spam to those addresses.
Finally, they're targeting us directly. You know what that means B-)
Also, I doubt the database's been compromised. I'm sure they only diffed the original and the filtered e-mail list. This means that only a small percentage of e-mail targets has been truly released.
Why not just sign spam@uce.gov up? That way the US government will have a nice log of who is sending these emails. Plus, if the spammer shares the list, there will be additional spammers who will happily be reporting themselves for violating the CAN-SPAM act.
This is going to end up working like a giant marketing campaign for blue security once the spammers fail miserably. Sending more spam to people who are already using BlueFrog is going to backfire because BlueFrog works. Publishing the list blue security subscribers isn't going to do any good since they all have BlueFrog, and will just push the little "Report New Messages In Spam Folder" button. Then, having shown that BlueFrog works, and having foiled the spammers, more people will sign up. Also, the blue security website is still up. check it
Prediction: The real iPhone killer is going to be sex robots from Japan. Think about it.
The site hasn't been hacked.
...which I would be pasting here if I could get to the goddamned site. Thanks a lot, slashdot. I'll be back to post the full text once I can get in the bloody site.
Hasn't anyone gone to bluesecurity.com to actually see what THEY have to say about this "security breach"?
I have two other email address that WERE NOT signed up with BlueFrog also getting this spam.
BlueSecurity's official statement is this:
In short, the spammers are PISSED and they'll do anything to get people to unsubscribe from BlueFrog, including sending spams with lies. Don't fall for it. Keep fighting spam.
[an error occured while processing this directive]
I would like to thank the person that is using their spam servers to send these bluesecurity emails. Since the emails don't sell or link to anything, all the spammer is doing it letting the BlueFrog Community know that BlueSecurity is hurting his/her pocketbook, spending time and money on us instead of regular spam and giving us the ip addresses of all the machines they use to spam.
Comments on BlueSecurity forums last night demonstrate that users with multiple protected addresses are getting these attack spams to some, but not all, of the protected addresses.
What's lkely happening: Spammer has a mailing list. Spammer uses BlueSecurity's "cleanlist" tool to clean registered addresses from his mailing list. Compare original list to cleaned list - email addresses that are in the first but not the second are BlueSecurity registered.
By this logic, email addresses that the spammer does not already have are not made available to the spammer in any way via BlueSecurity's own list. Delivery patterns of the attack spams support this observation.
I'll also note that Gmail's own spam filters are already capturing all of these attack spams; I only got two in my mailbox this morning, about 50 more were filtered.
This is the first time I'm aware of that a spam prevention service has worked so well that it's got a spammer pissed off enough to lash out. BlueSecurity++
Web 2.0 == Giant Blogspam Circle Jerk
Blue Security sends an ANONYMOUS request to the spammer and give him instructions to download SOFTWARE that will clean up their e-mail lists. What it does is hashing each e-mail and checking the database.
This way, no e-mail address is being released to the spammers. They could as well diff the lists to see which addresses were removed, but they won't get NEW e-mail addresses that way.
I received that strange message yesterday, and sure enough I am now receiving a lot more spam It is all very similar too. I thought the message was a hoax, I checked the bluesecurity web page yesterday on they had a message stating that these spammers are using their own databases guessing that they would hit a bunch of the bluefrog users. I think it is obvious now that this is not true, the bluesecurity database has been compromised.
PEOPLE OF THE WORLD!!!
I AM SORRY!!!
My fault... it was me... I accidentally sent an eMail to my entire friends list... I couldn't stop it in time... please disregard.
So, let me get this straight: /lot/ of spammers send a /lot/ of e-mail]
1) Spammer sends you an e-mail [okay, a
2) You sign up to a DDOS community to flood the spammer
3) Spammer points out the difference between a reckless assault and a malicious one, by example.
4) Post to slashdot to complain about (3)
-- 'The' Lord and Master Bitman On High, Master Of All
There are about 400,000 users. So far, it has been one single source IP sending these. I got 12 of these emails at once, so I BlueFrogged them all.
There is a cyberwar in cyberspace between good and evil. Spammers are evil because they target innocent people with their schemes. They are thieves and hooligans.
Cyberspace nowadays reminds me of situation in the early history of US, when the government was weak and citizens had to defend themselves and their property from attacks with what they had.
Saying "do not spam the spammers" is like saying "do not kill the enemy in the battlefield without judge's ruling".
He enters my house to steal my property, to scare my wife and to expose indecent material in front of my kids. That is what it is. The fact that it is in cyberspace does not change it much, it is just a tool, like phone or mail, used by criminals before.
My message to BlueSecurity users: do not give up.
I do not believe in karma. "Funny"=-6. Do good and forbid evil. Yours, Oft-Offtopic Flamebaiting Troll.
It's been a while since I checked out BlueFrog, but I seem to recall Blue Security provided a database of MD5 hashes of members' email addresses, to allow spammers to avoid emailing them.
Then just use rainbow tables.
According to this article BlueSecurity is the target of a DoS attack.
Also, here's their explanation of the spammer's countermeasure:
Makes sense to me, and explains why only BlueSecurity users are getting the emails.
If it didn't cause them any trouble, they wouldn't bother, right?
Assorted stuff I do sometimes: Lemuria.org
I have my own email server and was a little scared to set it up fearfull of spammers taking it over. So far SpamAssassin has caught every single piece of spam and nobody has hijacked it. I even setup a fake account and gave the email address to every website I could find mostly ones known for selling/using the address for spam. Not one single spam has come thru. I'm very lucky I guess because other people have commented in this thread that they havent had the same luck. So again Linux sendmail SpamAssassin, has worked perfectly so far. Thank you for your time.
... but spammers are using BlueSecure API to validate their list, and instead of cleaning it, they send these futile threats.
This is clearly the proof that the idea of Bluesecure is sound, it please me to see how much those scumbags of spammers are annoyed >:)
http://www.transparency.org
Let me get this straight.... they send out e-mail from a bank saying "we are your bank give us your password" and it happens to actually be your bank... but as a smart user you don't believe it.
They send out an E-mail to the whole cleansing list or even just random addresses, and because you happen to be a member it must be true? Besides for the time it would take to send these all out BlueSecurity has no defense against this... so the honeypot caught it... not like it has an Opt-Out link in the E-mail for it to send back too. But eventually the Spammer will go back to his profit making mails while managing to scare a few thousand people off of BlueSecurity.
iRepairIT - iPhone, Mac, & PC Repair
That changes everything.
99% of all spam comes from a virus infected zombie machine on a broadband line, or a compromised account on a web server somewhere.
By directly attacking that machine, you are simply taking offline a machine owned by someone who has nothing to do with spam. You can only blame them for being slow on security updates.
You could say that taking their machine offline benefits the anti-spam community anyway, and forces the sending machine to notice that there is a problem. But the chances are they are already receiving anti-spam complaints and wondering why they have a huge bandwidth spike to pay for (in the case of servers) - while the spammer will have moved on to the next vulnerable Windows 98 PC, or FormMail script running on a dedicated server.
The overwhelming majority of anti-spam techniques in use today (blacklisting IPs in crazy vigilante run databases, blocking whole countries, DDoSing the source or the host of the source) all have one thing in common, and that's that they don't work, at all, and they go after the wrong people (and cause a huge amount of problems for legitimate email and network providers constantly fighting their own battle with spammers).
We need a huge change to the underlying basics of how we communicate with email, or to simply keep filtering away. These new "solutions" may get people excited, but they are nowhere near a solution - and arguably cause more problems for the internet as a whole.
I run into a similar problem, it was caused by a catch all address. Trouble is spammers use dictionary attacks and this can generate an insane amount of spam if you use a catch all address. Makes a nice spam honeypot though.
Jason
The part of the threat that i find most facinating is that the spammers threaten to send more spam for what they say is, "illegally attacking email marketers." Usually if you're doing something illegal you get a cease and desist, not a threat of more spam.
What many spammers already understand, including the criminal who is now threathening Blue Security's users and trying to DDoS their website, is that this is a new era in the fight against spam - and for the first time, spammers know they are losing the fight.
2 7188.html (download.com)
This is not just another passive mesure tryig to keep spam away; Blue Security's solution undermines the economy spammers rely on, the economy that motivates them to send billions of unsolicited messages. They know they will have to adapt to this new reality - some will comply now (Blue Security claims top spammers already comply) and others will try to put up a fight before understanding they have no other choice but to stop spamming the users that are willing to stand up for their rights and do something to fight spam.
I call all Internet users with any sense of responsibility for the future of the Internet to join the ranks of the Blue Community and make sure that spammers realize that common sense and justice will prevail.
Blue Frog can be downloaded from Blue Security's site or from major download sites such as download.com.
Do the right thing - join the fight now!
-- A proud member of the Blue Community
http://www.bluesecurity.com/register
http://download.bluesecurity.com/BlueFrog
http://www.download.com/Blue-Frog/3000-2092_4-105
here
If, like me, you were convinced by this story to install Blue Frog and fight spam, and if, like me, you use the Mozilla Thunderbird email client, then this official open source extension is for you!
Blue Frog Thunderbird extension
Note - You need a Blue Frog ID to use this software and the Blue Security site is currently down. I will definitely get this going ASAP to give spammers a swift kick to the database!
While each individual message is probably below the threshold the FBI usually investigates, if the whole block of threats could be reported to the FBI, maybe they could do something.
I'm a Blue Security user, and I haven't gotten an increase in spam, or any threatening emails. My guess is, this spammer just checked all the email addresses they could find against the list, and sent messages to the ones that came back positive. They can't keep up the spam forever, as it will just result in more opt-out requests (assuming what they send is actually spam, not just evil messages). Also, a DDOS attack on blue security's site won't last forever, and won't stop the project. So, /panic everyone.
Whenever anyone says "violence never solves anything" I always remember the part in Starship Troopers where the History and Moral Philosophy teacher says "Perhaps you could tell that to the Carthagians..."
Interested in a Flash-based MAME front end? Visit mame.danzbb.com
Whats the point?
:0:
.*
/dev/null
Would someone who spams for a living bother to check incoming mails? I wouldn't.
I hate spam as much as the next guy, and have even helped design some solutions to the problem for service providers, but the points made in the back-spam are valid.
1: By mailbombing suspected spammers, you guys are committing a crime.
2: The potential for innocent victims in this scheme is huge.
3: You are trusting a group of people whose credentials you don't really know. It's entirely possible, even probable, that they are, in fact, using your systems for purposes you don't support.
4: Even if 3 above isn't true, all it would take is a compromise of the system, which is a pretty juicy target, to make it true.
The probelm with a war on spam is the same as the problem with a war on terror. How do you tell who the bad guys are, and who gets to decide? It's not the same as a war against a state actor that engages in unrestricted U-Boat war. In fact, it's more analagous to having a bunch of destroyers depth charging where there are both U-Boats and friendly submarines, and hoping the gunnery officers get it right.
The problem with diffuse threats is that you can ONLY defend, not attack, and no defense is perfect.
It looks like the spammers might have forgotten who they were messing with. They were essentially flooding a number of users of which a high percentage actually report their spam. Could it be that the sudden drop of their FUD spam e-mails to 0 over the last 6 hours be due to this mass reporting? In particular, to SpamCop.
I would just generate huge lists of fake email addresses and run it through blue security's tool. Then you diff and get the email addresses that were stripped. Now, because this is using a hash to validate the email addresses, you're going to get a lot of false positives (an infinite number obv). So what, if you are a spammer you are used to dealing with millions of email addresses; just spam them all. This could be why people are picking up the thread-spam at addresses that are not registered. . . .
Im kinda tempted to setup another machine and load it with as many email addresses as possible. Logic to me says if they start spamming you and you remain a bluefrog member then they are going to choke the hell out of their networks with unsubscribe messages. I have no idea what the bluefrog ratio is but I would guess its 1 to 1. If they increase the mail they send you 10-20 fold the systems they are sending from will get 10 to 20 fold more autoreply's from bluefrog. I don't know what bluefrog's hosting situation is but I bet the mail going out is alot easier for bluefrog than it is for the spammers who probably have smaller operations and have to recieve it. If they are already hurting I doubt they can keep the tactic up for long and the increased traffic generated by their increased traffic is probably enough to cripple a mail server and drag a network down. Some of the mails from the "hackers" don't seem to well thought out either. Whether or not the BlueFrog company is run by Jewish people is completely irrelevant. Whether or not bluefrog's tactic's are illegal is questionable. So they are spamming the spammers big deal who cares. And the whole fair play thing is laughable. Sure I don't want the email's so I go to the unsubscribe link and enter my real email address and they sell it to 20 other companies I would hardly call that fair. While I try to stay somewhat ethical and I don't agree with DDoS attacks I find it extremely hard to care if someone sending out massive amounts of mail gets attacked. I'm actually kind of upset that Im missing out on the fun.
Blue frog is open source...
The race isn't always to the swift... but that's the way to bet!
Publicity is exactly what a situation like this needs, so I'm glad Slashdot finally picked up on it. Hopefully those of you who don't use Bluesecurity will decide to join in (when the DDoS stops), and for the folks that do use it continue to do so. The fact that the Spammers have recognized Bluesecurity obviously means that it is working. Hopefully things will work out in the end...
correct, it is a maligned word for no reason. Vigilante. One who is vigilant, pays attention, does their job and duty..
Crime is everyone's problem, it isn't only the police's job. They can't be everywhere all the time and numerous court cases says that they don't even have to help if they don't feel like it. Strange but true facts. If I saw an old lady getting mugged, I would thump the attacker, right on the spot. Vigilante (with some politically correct bad connotation), or concerned citizen? If I saw bank robbers fleeing the scene (masks on, bags of loot, obvious stuff)and jumping into the getaway car, and I was in my car, I would ram them to disable the car. If they wanted to get nasty, I am a tool user and owner, I could deal with that as well.
I know some nations have it so that joe ordinary citizen isn't supposed to "interfere", and passed laws against it, I am glad I do not live in such a place. I call that the criminal protection acts. It's uber-lame.
Want to know why all the illegal immigrants decided to "protest" their status as illegal border jumpers and illegal job jackers and illegal US government benefits stealers? Concerned US citizens noticed the government was NOT enforcing the laws on the books, so they take action, watching, reporting, in some cases citizens arrest when they caught the jumpers on private prperty trespassing, now they building their own border fences, which is entirely legal. It started small but grew in size and importance, started to get some press, millions of legal residents all went RIGHT ON, INCLUDING all the legal immigrants who are honest and went through the necessary steps, and it was obvious it was working. The criminals decided to "fight back" with demonstrations. Screw them!
Sorry, if you are here illegally, GO HOME, clean up your own nations *first*. If it is SO BAD wherever you come from that anyone "you" feel the need to flee, it is ALSO bad enough you should take "emergency drastic action" in your own nations FIRST. Be a patriot, clean up your own nations and make them more productive and more free, don't abandon your fellow nationals.
BlueSecurity
The site is under a double whammy attack right now. DDoS from spammers and the Slashdot Effect from, well, you.
So, apparently their website is down right now, due to either a DDoS or Slashdotting (humm, that's kind of a redundant distinction, isn't it) ... can you or some other BlueFrog user provide some insight into how their software works?
Is it something that works server-side? Or do you install it onto your desktop computer? And if it goes onto your desktop, does it work as a plugin for your email program, or what? And what email clients does it support, etc. etc.?
I'd be very interested in using it, but I don't use Windows and I've seen no indication as to what platforms it's available for or how it works.
Anyone want to clue me in?
"Ladies and gentlemen, my killbot features Lotus Notes and a machine gun. It is the finest available."
I received a couple of spams from these assholes. I signed up with Blue Frog a year or so ago but I never have used the software to report anyone so I guess they may have compromised the Blue Frog database rather than gather information any other way.
I will make a couple of comments.
1. Thank you for reminding me about Blue Frog I had forgotten that I had even signed up. It obviously works well enough that it's pissing you off. Although I haven't downloaded the software and used it I will now that I know it's effective. Thanks.
2. For the FUD that's being put out about spammers being behind Blue Frog and backdoors and everything else in the software I say "Bull Shit.!" The software is open source Bozo.
The race isn't always to the swift... but that's the way to bet!
I see this attack as another sign that this is an effective way to deter these spammers, and they are really feeling the heat. I run a farm of mailservers that hosts many domains and deals with about a half million messages a day, I'm feeding some of the big spam target domains' spam into bluesecurity and take up a few spots on the top 10 contributors list. I think the bluefrog approach is very effective, takes care of all the reporting that spamcop does, plus is a pain in the spammer's ass. As you can see it's putting pressure on these spammers or they wouldn't be doing this. I got over 20,000 of these threats just to a single address last night.. pretty fun. The retry queue of mail trying to get to bluesecurity's servers right now ? not fun. Going on 2.5 million peices of spam in there :)
My name is coaxeus, and I approve this message. In fact, I think it is awesome.
I never signed up with BlueFrog (in fact, the first I heard of them was when a few pieces of the current spam flood made it into my mailbox at work). So my guess is that any claim to have obtained the membership list is a bogus claim by the spammer(s) responsible for the current flood. My 2-cents, FWIW.
I'm not on Blue Frog's list. This morning I got the note below. It's clearly a joe job; that is, sent by a spammer to discredit the Blue Frog people:
.EXE here: http://www.bluesecurity.com/blue-frog/
The trackback URL for this blog entry is:
http://community.bluesecurity.com/
Bringing spammers to Their Knees:
Bluesecurity.com hopes you'll join thousands of others in an army capable
of crippling spammers' Web sites.
A few thousand spammers have ruined our internet. They've clogged our
mailboxes with filth. Already, 90% of email traffic is made up of
spam. Let us no longer blind ourselves to the irrefutable facts:
current measures have failed to stop spammers. The experience of the
past several years has proven that passive measures are just not the
answer.
Retribution is the only real answer to spam. We must punish spammers
ourselves to prevent them from taking over cyberspace. We must reclaim
our territory. We need direct action to eliminate spammers for good.
The magnitude of the task which lies before us is great. We are fighting
for the future of the Internet. What we need to do now is get as many
users as possible into our community. We already have a botnet with
hundreds of thousands of computers working together to induce commercial
loss on spammers and their ISPs. We have launched numerous
Denial-of-Service Attacks on Chinese spam networks with great success,
and plan many more!
We have excellent financiers who allow us continued success with our botnet
growth and Denial-of-Service Attacks. We thank the government agencies
involved
for their continued cooperation. We thank our leader, Eran Reshef,
for continued strategies of DoS attack operations. Also, US-based Rembrandt
Ventures & Skybox Security for their extensive funding & continued support.
And a
very special thanks to Douglas Schrier who has helped our botnet come to
life.
If you haven't signed up with the registry and installed a blue frog yet,
please sign up now.
If your friends have not yet joined us, we will convince them to do so.
Let's stop filtering spam and start eliminating spammers.
Together, we will reclaim the Internet, One ddos at a time.
Please Contact Us for any questions on signup via the following info:
2077 Gateway Place, Suite 550
San Jose, California 95110 USA
Phone: 866-6SKYBOX
Phone: 408 441 8060
Fax: 408 441 8068
Israel HQ:
60 Medinat Hayehudim St.
P.O.Box 4109
Herzliya Pituach 46140 Israel
Phone: +972-9-9545922
Current and potential investor relations:
Rembrandt Venture Partners
2200 Sand Hill Road, Suite 160
Menlo Park, CA 94025
T: 650.326.7070
F: 650.326.3780
-----
Fight back spam! Join our Botnet today.
Download our
Sitting in my day care, the art is decopainted.
I was quite content filtering with SA until the most recent dictionary attack run (which is still in progress). Overnight, they started sending thousands of messages through a distributed bot network, and SA was eating up serious resources as a result. I ended having to dedicate half my weekend to reworking my filters to bounce known dictionary attack e-mails (of which there are currently 4500) so that they wouldn't hit SA - and this is an incomplete solution. Really, what I need is something to stop them at the SMTP level - someone suggested mailavenger , but since I'm not running my own box for mail, that would be a bit hard to implement.
.redirect file, procmail, SA, and pine. Pine feeds the unknown e-mails to a folder for review and extraction to fine-tune the .redirect file. procmail filters out the worms. SA does a hell of a job defending against regular spam (of which I get about 300-400 a day).
At this point, I'm filtering using a
No, I wouldn't shed a tear if every spammer in the world was rounded up and sent to Gitmo. Well, maybe tears of joy...
Blame the Jews, lol.
BlueSecurity lists a USA address as their place of business, whereas their main office is in Tel Aviv. BlueSecurity is run by a few Russian-born Jews, who have previously been spamming themselves.
I dont see spam stopping as long as these people are making money, as long as there are idiots buying shit or clicking links in spam its not going to stop.
Apparently they're using MD5 hashes truncated to 30 bits.
From http://www.bluesecurity.com/technology/registry.a
I find this very interesting. If an e-mail has one (and only one) MD5 hash, it also has one and only one 30-bits prefix of an MD5 hash. For practical purposes, it's equivalent.
This Blurry Hashing was reviewed in the Spam Kings blog, and it appears to have a 1/1000 probability of false positives, but who cares? It works!
Regarding submitting the e-mail list, apparently the entire hashed list is downloaded (a few megs) and processed locally via software. I haven't checked if the "do not intrude" checking tool is published in the source code. But just knowing that Blue Frog is open source, is a relief.
Comments on BlueSecurity forums last night demonstrate that users with multiple protected addresses are getting these attack spams to some, but not all, of the protected addresses.
Exactly, whoever it is that has resorted to all of this only had one of my two email addresses. So I receive this spam to one account and not the other.
OTOH, they may have started spamming before completing the scan. Dividing their address books into smaller segments to scan through so as to start before finishing the whole list.
If you have received an email threat please take the time to fill out a complaint at the Internet Crime Complaint Center. The threats are a crime whether they are personal or to a business address. I also have a friend that is contacting someone at the U.S. Atty's office here. It may seem futile but spammers get sloppy sometimes and they have been sent to prison before.
Why are you paying money for a "spam solution" when you use gmail, which apparently has a better spam filter?
Oh you bought into their advetisments? These people are no better than "Stop Sign" security, which sounds great but turns out to be something completely retarded. I wouldn't be surprised that the russians who run "Blue Security" are part of the mob that is responsible for much of the spam themselves.
No, you Anonymous Turd, Gmail filters my spam into a spam folder so I don't have to look directly at it, but it does not prevent the spam from reaching my (and your) mailbox. The only way to prevent spam from being delivered in the first place is to make it unprofitable to send. Since convincing the unwashed masses that they shouldn't buy C1AALL1$$ from random emails is impossible, the way to make it unprofitable is to make the process of sending spam increasingly inconvenient and costly. Responding services like BlueSecurity do that.
For free.
I have wondered what good BlueSecurity has done me, as the amount of spam I've been receiving hasn't decreased (though the sources do appear to have changed; I'm getting a lot of spam in Chinese and Hebrew now). This pissy little spammer lashing out clearly demonstrates that BlueSecurity works to make spam delivery unprofitable.
Now, commence with the STFU already.
Web 2.0 == Giant Blogspam Circle Jerk
They RESPOND to the spammer?
So basically they are running a service for spammers, showing them which addresses are valid...
I have been a member of Blue Security since the first day I read about it here on /. , I was tired of getting hundreds of emails everyday. For the first couple of months I was wondering if I was waisting my time forwarding all the spam I was getting, then over a period of one month my spam level dropped from hundreds per day to now about 15-20 and many days much less per day, my best day was only 1 in the several accounts I have registered with Blue Frog. Some of the smart spammers realized I would never buy any of the crap they are hawking, it is now just the stupid ones that are left that have not figured out the obvious, "Not only do I not want to buy your crap, but I am tired of hearing about it from you too."
To the fellow members of Blue Security--- KEEP UP THE GOOD WORK
To all the people who have yet to join-- Please join us and get the spammers out of your life.
I am not employed by Blue Security, just a firm believer.
Why do spammers send email? To make money, pure and simple. The fact that they are trying to retaliate indicates that this is hurting their bottom line. I'm pretty sure that the spammers would rather be spamming, since that is the only way they make money. Any activity that is not spamming is a a money-losing process for them. Economics is the only way to hurt them, and Bluefrog is increasing their cost of business.
No, I don't trust in god. He'll have to pay up front, like everybody else.
You wouldn't save any resources by using mailavenger as SA still needs to run on each message.
Do you have a catch-all address? The simplest thing to do would be to switch it off.
Jason
They RESPOND to the spammer?
So basically they are running a service for spammers, showing them which addresses are valid...
Why do I bother? I am compelled.
Twit: This article is a great description of how it works. Most specifically, from that article:
"In The FTC's report on the feasibility of a national do not email registry,[1] they conclude that a registry would be a greater detriment to the Internet community than it would be a benefit. The report even considers the possibility of using a hashing algorithm to make it impossible for the "harvester" to directly use the registry as a recipient list, and concludes that hashing would not help because the harvester could use the same hashing approach to validate addresses from their existing email recipient list, thereby defeating the purpose of the hash. In fact, this is poor logic because there is no evidence that bulk emailers care about the accuracy of their lists - since it costs them nothing to send the messages in the first place, there is no reason for them to concern themselves with ensuring that their lists are accurate."
Would it help you to STFU if I put your tinfoil hat in your mouth?
Web 2.0 == Giant Blogspam Circle Jerk
But if you're running your own email server, you can have a lot more fun with dictionary attacks - make sure to seed the web with some dummy addresses like aaaa@yourdomain and zzzz@yourdomain to encourage the spammers to get some bad addresses, and any IP address that tries to reach a bogus address on your system gets banned or teergrubed because you know it's a spammer. (No longer a perfect solution - spammers these days are using zombie farms and not just single servers, but identifying and banning a bunch of zombies is a Good Thing too, because you know They'll Be Back.)
Bill Stewart
New Fast-Compression-only CPR http://preview.tinyurl.com/dy575ks
Welcome, Spammer, to Slashdot!
You are truly welcome here, if only because we are hoping you'll accidentally let slip something like, say, your home address and a time you'll be home alone.
And I guess you'll fit in nicely with the rest of the trolls....
1: Make it financially unviable for them to spam,
2: Make it physically inviable for them to sepam (e.g. prison)
Other than true (and truly illegal) violence, like shooting spammers, #2 is pretty much the domain of the government -- and they've been notably lax at doing so.
Blue security goes path number one, and attacks the statistics of spam.
The spamming industry is based on the fact that 99.99% of the spam that they send out is ignored, and that pretty much all of the responses they get back are actuall business.
You see, the really wierd thing is that if everybody responded to every spam that they got and, for example, asked the spammer to stop -- or simply visited the site, and did nothing else with it, they'd be blasted into complete oblivion.
If we each responded to one spam per day, with bogus information, they'd never be able to filter out the "good" marks from all of our bogus info.
The fact that they are attacking blue is an indication that Blue security is having an effect
If you think that spam is a bad thing, then follow up on blue security --
- Go to their 'mortage' sites, and plug in false informatin.
- set up a wget script to 'visit' their web site 3 or 4 times.
- Respond to their emails (from a throwaway email address) telling them to go away.
That's all it takes... 10 million people responding at a far lower level than the Blue Security users are would be more than enough to blanket these creeps in unusable data.And it's not illegal -- all each person is doing is responding to their messages.
Sometimes boldness is in fashion. Sometimes only the brave will be bold.
I just got the following NDR email (which GMail flagged as spam, but I read anyway). Looks like the pissy spammer is using email addresses from his list in the From field, and generating false spam for BlueSecurity.
.EXE here: http:/// www.bluesecurity.com/ blue-frog/
I have deleted contact information at the end, for the sanity of those involved.
Begin
Subject: FW:Automaticly send 1000s of DDOS complaints for each spam you recieve
The trackback URL for this blog entry is:
http://community.bluesecurity.com/
Bringing spammers to Their Knees:
Bluesecurity.com hopes you'll join thousands of others in an army capable
of crippling spammers' Web sites.
A few thousand spammers have ruined our internet. They've clogged our
mailboxes with filth. Already, 90% of email traffic is made up of
spam. Let us no longer blind ourselves to the irrefutable facts:
current measures have failed to stop spammers. The experience of the
past several years has proven that passive measures are just not the
answer.
Retribution is the only real answer to spam. We must punish spammers
ourselves to prevent them from taking over cyberspace. We must reclaim
our territory. We need direct action to eliminate spammers for good.
The magnitude of the task which lies before us is great. We are fighting
for the future of the Internet. What we need to do now is get as many
users as possible into our community. We already have a botnet with
hundreds of thousands of computers working together to induce commercial
loss on spammers and their ISPs. We have launched numerous
Denial-of-Service Attacks on Chinese spam networks with great success,
and plan many more!
We have excellent financiers who allow us continued success with our botnet
growth and Denial-of-Service Attacks. We thank the government agencies
involved
for their continued cooperation. We thank our leader, Eran Reshef,
for continued strategies of DoS attack operations. Also, US-based Rembrandt
Ventures & Skybox Security for their extensive funding & continued support.
And a
very special thanks to Douglas Schrier who has helped our botnet come to
life.
If you haven't signed up with the registry and installed a blue frog yet,
please sign up now.
If your friends have not yet joined us, we will convince them to do so.
Let's stop filtering spam and start eliminating spammers.
Together, we will reclaim the Internet, One ddos at a time.
Please Contact Us for any questions on signup via the following info:
address and phone deleted
Israel HQ: address and phone deleted
Current and potential investor relations:
Rembrandt Venture Partners address and phone deleted
Fight back spam! Join our Botnet today.
Download our
Web 2.0 == Giant Blogspam Circle Jerk
There is another attack just started against Blue Security, I think. Someone has been sending out e-mails that appear to be sent by me. These e-mails urge the reader to join the Blue Security effort. In other words, these e-mails look like spam that "sells" Blue Security, and they look like they came from me.
I know this because I have received three "delivery failure" messages from mailer daemons.
In other news, the number of spams that I get per day has almost doubled recently.
Last time I heard the FBI doesn't like that kinda thing. Oh and this time no direct mailing companies lawyers will jump in to defend the freedom of speech. This email is simply a blackmail letter. Treat it as such.
MMO Quests are like orgasms:
You may solo them, I prefer them in a group.
I was more worried about these spammers when they didn't care about Blue.
U AaIRZk2e.54@.3c52c5a1)
Now I know they are scared.
Once BlueSecurity gets over its slashdotting, check out their forums. Lots of angry rhetoric from spammers is posted there (http://community.bluesecurity.com/webx?14@780.8k
For what its worth, I have about 30 protected email addresses at BlueFrog, and only the ones that were already getting spammed have been at all affected. Their extra spam is insignificant. They doubled my spam catch for a day. Feel me tremble.
10001001111001110110011000011101110
So as I understand it, they have just gone from possibly legal mass mailings - depending on the nature of the products they are hawking & the formatting - to extortion/blackmail and Misappropriation of computer services (DDOS) both Federal Crimes in the US & at least the extortion/blackmail claim has a history of successfull extradition.
This is the kind of briliant manuevering I have only seen from SCO's lawyers and the News of the Weird site.
FBI - moron
moron - FBI
you 2 play nice now.
Giving up any informatin about your email addresses to the public is the exact opposite of security.
Now the spammers have a verified list of email addresses known to belong to stupid people - 1-0 to the spammers.
I can't check the details, because they've been Slashdotted as well as spammer-dotted, but that's basically the kind of thing that the BlueSecurity system does. Spam one BlueFrog user and suddenly thousands of users go hit you with unsubscribes - I don't remember if they're hitting you with legitimate or bogus ones (probably both? presumably at least some honeypot addresses.)
Bill Stewart
New Fast-Compression-only CPR http://preview.tinyurl.com/dy575ks
(killthem) :)
:) our good friend and master of hes job did that. heh it's just a beginin.
...
:)
FoGGeR lol yeh sure am a fed and you a blueguy
anyway fuck you and your company we're fighting you and i recived around 100 pvt msgs
telling me that they're with me. No need to remove them we'll just show them who we're. Thanks
(killthem)
LCS yes it's been down
(ebulker)
yes down but members.bluesecurity.com still up need to down www, members, community !
need to fuck all aliases afaik this domain used in bluefrog ?
(killthem)
xxzindoxx and bluefrog feeel me babys
you can both of ya blow me and belusecurity company as well. the game started i am the winner
hehe and yes Hello to all the feds they're most welcome to get over and visit me hehe.
bleu i got over 400 pm's last days and feel the power of this people very soon.
we walk slow but the heat gonna TO BIG FOR YOU.
all the sponsors contact me if you having problems with this fuckers i'll give you everything
you need help people servers money and all.
LETS FUCK BELUSECURITY.COM bleusecurity.com are down already lol
(crazy)
You BlueFrog faggots, you think this is the only community that has your whole database?
You honestly think a community of people you are trying to take down are going to
REMOVE you from their lists? Look, killthem is not an anti, I know him personally,
so let that whole bullshit idea go to rest. Second, by running that database as froms
or mailing them on a dedicated box will not result in any "fed" coming to your door,
more so you'll just be pissing off another bullshit internet-lamer who can't understand
how to filter a simple spam message, so they join some bullshit community called
"BlueFrog" and think they can run this shit. BF, newsflash: do you realize how many
resources this community as a whole controls? Do you honestly think you stand a chance?
Your domain is down, it's a matter of time before more nets are mounted to bring down your
members area and it'll be held down continuously until BF userbase has gotten to the
point they can't perform their equally illegal DDOS attacks. Guys, download the DB,
spam it, compile your lists with it and trade it around. Use them as froms, mail your
anti DB with them, do whatever you want.
Let this database leak to the point all these stupid ass fucks have to get new e-mail addresses.
Adios bluefreaks
(killthem)
did you ever try to protect your websites and all ? you're fucking down baby
Date 5/2/2006
(crazy)
Pinging 194.90.8.20 [194.90.8.20]:
Ping #1: * [No response]
Ping #2: * [No response]
Ping #3: * [No response]
Ping #4: * [No response]
Done pinging 194.90.8.20
Boy oh boy
Date 5/2/2006
(dollar)
"baby why dont you hit me with your best shot!!" da daa da daa "I said baby why dont you hit me with your best shot"
Thats what these bluefrog idiots have been singing the whole time. They simply asked for it.
"Slap an anti a day to keep spamhaus away"
Great Affiliate Programs
Custom Bulk Applications
BP Mailing/Hosting/Direct Servers
Contact Me
Date 5/2/2006
- sent a wave of spam messages containing misleading information about Blue Security, and scurrilous attacks on its executives, urging members to cancel
- sent another wave of spam with threats against Blue Security members
- sent a third wave of Joe-Job spam purporting to be from "Blue Frog Member" with forged sender name, but describing Blue Security's operation in misleading terms. This spam is targetted to annoy those people on their spammer lists who usually complain the most
- mounted a denial of service attack on all Blue Security web sites. Although they claimed success, the www.bluesecurity.com web site was actually unable to cope with the deluge of interest from Slashdot readers!
As a result of this concerted attack, Blue Security's profile in the electronic media has been considerably raised. Slashdot has this vibrant thread of postings, and other media have been quick to follow suit. (See http://www.realtechnews.com/posts/3011 )The attackers have not succeeded in their aims. Members of Blue Security have been expecting such a retaliation from the renegade element of the spammer community for some time. If anything, this attack has simply served to draw the community closer together, and has hardened their resolve to combat the scourge of spam. Furthermore, the attack has failed to reach the core of the Blue Security service. The Blue Frog application is still sending requests to spamvertised websites that they clean up their mailing lists using the registry compliance tool. And spam reporting to Blue Security is continuing at record levels.
These illegal actions by this small spammer group are poorly chosen. They lay themselves open to detection, arrest and prosecution.
Their strategy has also clearly revealed the source IP addresses of their open relays and bot-net.
We live in interesting times.
I think i'll join this fight,
;-)
Having setup a honeypot about the size of a jerrycan, i actually registered at slasdot to ask for help:
Could somebody please send me some SPAM ? if it gets through GMails filter i'll get back to you ASAP
The Blue Independence War
Today is Israel's Independence Day. It's a public holiday in Israel, but all of us in Blue Security are working. But we are glad we're working. We're helping the community fight the Blue Independence War. We fight for our freedom from spammers and cyber criminals. This is our big chance to reclaim the Internet. We must not let it slip from our hands.
Some desperate spammers are doing its worst to harm our community. They'd like us to back off, and agree to get their spam silently. Needless to say, that is not going to happen. We're not here to listen to their vile threats and fraudulent advertisements. We're here to stand up for our right not to be let alone.
You may wonder what you can do to help win the Blue Independence War. Here are some ideas:
Run your frog and report your spam
Tell you friends to join the fight
Write to your local newspaper about Blue Frog
Search for news sites, blogs and forums that discuss "blue security" or "blue frog" and post positive comments
Ask your representative to show support for the Blue Frog
If you have a blog, write an item about the blue frog
We need to be patient and prepare for more attacks. Some top spammers embrace the change and comply. Other spammers believe they can coerce us into obedience. Let's show them this is not going to happen.
We also need to keep track of what they are saying in their own forums, like http://www.specialham.com/specialham/m_36028/mpage _1/p_/tmode_1/smode_1/key_bluefrog/tm.htm.
As you'd expect from the incestious children of script kiddies, a few spammers are coming up with the list and then passing it out to their "collegues".
Matthew 21:12-16
Mark 11:15-18
Luke 19:45-48
Jesus also drove out the bad guys when he had to. I'm not saying that revenge or retribution or retaliation is always, or even often, the right answer. But sometimes something has to be done to stop evil and injustice.
I'm not saying that BlueSecurity is doing the right thing here either, but it seems like they're generally the good guys.
"Those who consume the bulk of goods are those who make them. We must never forget this secret of our prosperity."
There are those of you who will argue that it's not a botnet, however it looks like a botnet to me.
425 000 odd machines running that little blue frog app.
Are you sure you want to fsk with them?
that doesn't explain it, that doesn't even make any sense.
What are you quoting? how is that going to help with spam? "WE HAVE A SECRET LIST THAT YOU CANT SEE AND CANT SPAM THE PEOPLE ON THIS LIST". How does that prevent spam coming to you?
ohhhh yeah that doesn't make sense at all. what do they do besides get you to install software on your computer to "link up" with the bluesecurity antispam solution? ????
Why is this being modded up? "Below is an email that I received, which pretty much confirms that they have been hacked"??
No, it confirms that the spammers are *claiming* the database has been hacked. Um, not the same thing.
The spammers have not managed to extract any addresses from the BlueSecurity database. The only addresses they have are addresses they already had. Sure, they can do a diff on a full list vs. a cleaned list -- but they can't actually extract any emails from the database that aren't already exposed.
No, the BlueFrog software does not send spam, organize DDoS attacks, or "await" BlueSecurity's next command; they only submit single requests to spammer sites, one per message that you personally have received -- and the client is open-source, so any user with a coding background can confirm this. Nothing even remotely illegal (on the other hand, sending threats like these to users and DDoS'ing BlueSecurity itself is quite illegal).
Yes, BlueSecurity has a revenue stream (and plenty of venture capital as well; google for "blue security million"); they are charging companies for protection, and plan to start charging for entire domain protection for individuals. Obviously they don't charge for the software download, because they need a pool of individuals to give them they clout they need to market to enterprises. Win-win for us little guys.
All of this is covered in other threads, but somehow mods are modding up the parent message.
Please explain -- what did that email prove?
Brilliantly twisted world view, "We would much rather not waste our resources and send you these useless mails."
I like that. The obvious reply:
Dear Spammer:
Perhaps you were unaware, but Blue Security has provided a freely downloadable and easy-to-use software API so that you don't have to waste your precious time and resources sending emails to me, or anyone of the other members of the BlueSecurity list. Obviously, we are not an revenue source for you (if we needed ch34p onl1ne \/iagrra we would not be complaining), and we will only request removal each time -- so your returns can only be better with us off your lists.
Please contact BlueSecurity or almost ANYONE for assistance in scrubbing your lists -- we will be only too happy to assist.
Sincerely,
"Useless Mail" Recipient
That is exactly what Blue Frog does ... it simply puts a "Stop spamming me" text request in the website's ordering form and submits it ... one submission for each spam. Not that big of a deal ... unless thousands of customers do it at once.
The website owners are freaking out, and telling their spammers to stop sending email to people who inflict this particular hurt on them.
The spammers are freaking out because their paymasters are getting angry.
Heh.
These spammers aren't very smart. They send out an email saying unregister from Blue Frog, then in the next sentence they say "by the way we have DDOSed Blue Frog so their site is down". So one can't unregister with Blue Frog even if they wanted to. They haven't given this too much thought what are they trying to achieve? Free publicity for BF?
There have now been four stages of attacks on Blue Security, three of which are documented in http://en.wikipedia.org/wiki/Blue_Frog and the fourth is the DDOS attack on bluesecurity.com. The next stage is already set up, comprising another Joe Job using discovered Blue Security members' addresses as the forged "From".
:)
////////////////////
(QUOTE) Date 5/3/2006
> From bluesecurityDB:
Donwload bluesecurity.com database from >>>>>
Enjoy people use them as froms will provide some txt's to mail soon
cheers
(QUOTE) Date 5/3/2006
> From killthem:
i have recived over 200 msg's last two days by people telling me that they wanna join and give all the support they can provide to drop this bluesuecirty.com
BLUESECURITY.COM are down with full services.
Now i wanna say sorry to people that i didnt reply so far, give me sometime and i'll msg you back to all of you guys thanks for support.
GREAT JOB TEAM KEEP GOING.
ANTIS FUCK OFF
**************
(END QUOTE)
-=[ place
how the fuck is that flamebait? I've yet to see any evidence pointing against it being 100% true. If bluesecurity were up, maybe I could read more about how it works, but all the information I have on it either implies or specifically states that it is an attempt to DDoS spammers.
/think/ I always agree with Bob and Alice and they say I should always ignore Cindy because she keeps trying to steal their individual photons, but I've never actually talked to Cindy.. can I really trust their judgement? A large web of trust might balance things out, but unfiltered Mob Rule can make very bad decisions and I dont like the idea of ignoring someone completely just because 90% of the world thinks 90% of what they say is full of crap. [replies: insert obvious joke here!]
If you disagree that maliciously attacking someone without care for collateral damage is either worse or the same as carelessly causing lots of collateral damage through a selfish and non-malicious act, you are welcome to express that opinion and I welcome you to do so in a non-flaming manner.
If you respond to someone with unequal force, their responding to that response with equal force seems fair. In a general sense.
I think spammers are cockwits, sure, but I also think every "this solution will work! I will end spam!" idea that I've seen has been thought up through equally cock-based means.
Examples:
- this one ("what they do has the effect of a DDoS! Let's DDoS them back!")
- huge catch-all blacklists ("Spammers are breaking the internet! Let's break the internet on our own terms!")
- purposely blacklisting non-spammers as a means of extortion ("Some of your customers are breaking the internet! Broken internets are bad. Here is an example of a broken internet. Really horrible, isnt it?")
- whitelists ("Well if we just didnt talk to anybody, we'd never have anyone say anything bad to us!")
Web-of-trust sounds like a good idea, but I generally disagree with systems which rate people instead of actions. Should I ignore steve just because I dont like something he said or did? Wouldnt that make me the worst kind of person? I'm very conflicted about this one, mostly because it seems open for abuse or bad judgements. If I
It all seems too uncertain for me to trust, personally, but the flaws it has are potential consequences of the design, it isnt built on intentionally being flawed- a flaw going by another name.
See? I can ramble at length and still say only as much as 4 short lines. Short and to the point != flamebait.
-- 'The' Lord and Master Bitman On High, Master Of All
I may as well note that I do realize that Web-of-trust is not intended to do anything like I described, but it would be completely naive to assume that when someone has a magic button they can push to say they no longer believe a person is who they say they are, that it will only be pushed under those circumstances, and only used to calculate that particular thing. People use "flamebait" to mean something other than "this person is trying to cause other people to post flames", for example ;)
-- 'The' Lord and Master Bitman On High, Master Of All
I would like to know whether or not any of you that may use Blue Frog and operate upstream from them are doing anything to help other than piss and moan on Slashdot!? For that matter, why is this not a priority issue in general. We all hate spam... or do we accept it as long as it is our own? Null route the hosts performing the DDoS, who cares if they are "innocent", if you were exploited in the first place you are no longer innocent! Blue Security should point their domain at: CIA, FBI, MOSSAD, etc... perhaps then some pertinent attention would be paid.
I see two strong messages from this recent attack by the spammers:
(1) BlueFrog is having the desired effect. The spammers are now diverting some of their resources to fighting back which means less resources for traditional spamming. This is an increase in their costs and a decrease in their bottom line.
(2) The spammers have shot themselves in the foot. Nobody likes to be threatened. Even more important, incremental escalation is taken in stride, but sudden escalation gets noticed. If cigarette taxes increased ten-fold, a lot of people would quit immediately, but nickle-and-dime increases don't cause dramatic change in behavior. The same is true for spam. We've all accepted the slow but steady increase in our spam counts, but if I'm going to suddenly get hit with ten-times the amount in an overnight increase, then that's not going to make me lay low. That's going to firmen my resolve and fight back. It's also going to be immediately noticed by major ISPs and regulatory agencies because it will suddenly and drastically affect email services worldwide.
I think the spammers are going to suddenly get a lot more attention and they're not going to like it! I'm not backing down. In fact, I'm even more ready to fight.
Bring it on.
You've already trained me how to manage my spam, I can handle an increase... can you?
I am a member, and I got the email. I will stay a member as well. I also knew that spammers would eventually crack the Blue Security database even if it took such efforts as a physical break in. Spammers are running scared because some people decided to give them a dose of their own medicine. I would also like to say that I monitored all connections from the computer on which I have installed Blue Frog, and I have not seen the first spam sent as alleged by spammers.
It is simple to write a worm, trojan, or other peice of malware that sends spam or causes a DDOS. I could do it myself if I wanted to. However, I have ethics and choose to allow poeple that choice of using my software. I have written such offensive tools such as:
SpamFryer - A java application that allows a user to paste in website's URL and set the number of times that the URL is to be accessed. SpamFryer works with https URL's as well as with http URL's. The application's source code is embedded within the Java archive so that people can play with it and hopefully improve it. It is also a project on SourceForge.net SpamFryer can be downloaded via http://www.plaza1.net/SpamFryer.jar
SpammerSlapper - A signed java applet that causes the browser of a webpage visitor to repeatedly download URL's specified as parameters (can use http and https URL's). This applet can be used on any webpage, and I highly encourage people to use it on their personal webpages. Again, the source code is included in the Java archive. One must choose to accept the certificate if one wants to give the applet permission to access other websites. SpammerSlapper can be found at http://www.plaza1.net/SpammerSlapper . If you want to look at the webpage but not allow the applet to access other webpages, then click no when asked to accept the certificate. Otherwise, accept the certificate and slap some spamvertised pages.
SpammerSlammer - A simple cgi program that generates a real looking but fake name, address, phone number and test credit card numbers (known to pass typo checks but not allowed to be actually charged). The program works by accessing a zipcode and area code database. The rest of the information is randomly created. This is a great way to waste the time of many spam site operators. The URL for SpammerSlammer is http://www.plaza1.net/spammerslammer.cgi
I wonder what would happen if Google's phonebook was used to look up the names, addresses and phone numbers of well connected citizens (lawyers, judges, and politicians) and this information was entered into the forms on spamvertised pages. I wonder how many fines will be charged to these companies for violating the don not call list. I know that the information would have to be entered from an Internet cafe, or otherwise public system. If only a million users would take offensive action against only one spammer a day, spam will cease to be profitable.
Another idea might be a peer to peer version of Blue Frog. If a signed list of spamvertised sites was downloaded from peer to peer networks then the spammer scumballs would have no have no stationary target to attack. Rather than fowarding emails to Blue Security, users of Blue Frog could save the emails to a file and allow the peer to peer versions parse them when instructed to. The more spammers attack me, the more pissed off and aggravated I become, and the more I work to make their lives miserable. I called one spammer's toll free number about 800 times from different locations. I never received another spam from his company again. Spam will cease when it becomes unprofitable. The like of Blue Security will hopefully make it unprofitable. I believe that they are making a significant dent in spammers' profits, or else thay would never be attacked in this way.
The users are getting the hate mail based on addresses associated with the opt-out letters. That of course is illegal itself I'm sure; but it's hard to police the Internet is it not?
I think with the interesting people, their lives can't possibly be wrapped up into a nice little package.