Slashdot Mirror
BlueSecurity Database Compromised?
Stray1 writes ""You are recieving this email because you are a member of BlueSecurity...." An email from unknown detractors has taken the Bluesecurity anti spam lists and decided to take matters into their own hands. I recieved this Email from an anonymous, and garbled host, which went on to say in not so fantastic english that I, as a Blusecurity member, would recieve this and many more (about 20 -30) spam messages a day until I left the blue security community. Blue Security, (www.bluesecurity.com)a website and community designed to lessen your Spam Email, is down for the moment. Is this what we have come to? Spam,(erm 'high volume email') companys holding your address hostage until you comply? "...We mightve had your email addresses before in our lists, but now, we are targetting YOU, because YOU are a bluesecurity user". I have to say, up until this point, my spam was down by about 70% to 80%."
Blue Security to systematically flood a known spammer's website with opt-out messages; much to the headache of the spammer.
And by flood I taeke it you mean spam
When will the world learn, violence begets violence and spam begets spam. Lets find a real solution to the problem rahter then a vigalante justice.
If they're able to do so, what will stop them from *not* spamming you in the future anyway? Their ethics, integrity or your stupidity?
What the hell does 20 or 30 messages mean? Nothing at all to me. I reject anywhere from 20 to 40 THOUSAND emails daily, on a domain with precisely two email users: My wife and me. The vast majority of the crap I get is easily rejected because it's sent to bogus (as in, they never ever existed) email addresses. SpamAssassin catches much of the rest.
It was a joke! When you give me that look it was a joke.
We really need to take the internet back from these guys. Reply to every spam e-mail by going to their web site, and filling out bogus info. Give them bad information overload. Same thing goes for junk mail and telemarketers. When somebody sends you a credit card offer, send it back to them, writing "Take me off your list". Make sure they have to waste so much time throwing out bad mail that it isn't worth their time. When telemarketers call, ask them to hold on a minute. Then set down the phone and don't pick it up again for 10 minutes. That will dig into their costs.
Taking guns away from the 99% gives the 1% 100% of the power.
Pretty soon the spammers will be conducting unrestricted submarine attacks on civilian shipping in the North Atlantic.
Who do you get to be an expert to tell you something's not obvious? The least insightful person you can find? -J Roberts
BlueFrog has been criticised for it's so-called "vigilante" approach.. it's not alone in this approach, but perhaps this does go to show a potential downside: spammers are evil - pissed off spammers will simply direct the evil at the people who pissed them off.
Never email donotemail@WeAreSpammers.com
So, if I got this right, the spammers that are getting spammed are now spamming the spammers? Sounds like a flying circus to me!
The sky above the port was the color of television, tuned to a dead channel...
I'm sure that we're all interested in what these people have to sell... also that would probably cause a massive slashdotting.
My sig is too lon
Below is an email that I received, which pretty much confirms that they have been hacked.
----
You are being emailed because you are a user of BlueSecurity's well-known software "BlueFrog." http://www.bluesecurity.com/
Today, the BlueSecurity database became known to the worst spammers worldwide. Within 48 hours, the database will be published on the Internet, and your email address will be open to them all. After this, you will see the spam sent to your mailbox increase 10 - 20 fold.
BlueSecurity was illegally attacking email marketers, and doing so with your help. Many websites have been targeted and hit, including non-spam sites. BlueSecurity's software has been fully analyzed, and contains an abundance of malicious code. This includes: ability to send mass mail to users; the ability to attack websites with Distributed Denial of Service attack (DDoS); the ability to open hidden doors on any machine on which it is running; and a hidden auto-update code function, which can install anything on your computer and open it up to anyone.
BlueSecurity lists a USA address as their place of business, whereas their main office is in Tel Aviv. BlueSecurity is run by a few Russian-born Jews, who have previously been spamming themselves. When all is said and done, they will be able to run, hide and change their identities, leaving you to take the fall. YOU CANNOT PARTICIPATE IN ILLEGAL ACTIVITIES and expect to get away with it. This email ensures that you are well aware of the situation. Soon, you will be found guilty of computer crimes such as DDOS attacking of websites, conspiracy, and sending mass unsolicited bulk email messages for everything from viagra to porn, as long as you continue to run BlueFrog.
They do not take money for downloading their software, they do not take money for removing emails from their lists, and they have no visible revenue stream. What they DO have is 500,000 computers sitting there awaiting their next command. What are they doing now?
1. Using your computer to send spam ?
2. Using your computer to attack competitor websites?
3. Phishing through your files for your identity and banking information?
If you think you can merely change your email address and be safe while still running BlueFrog, you are in for a big surprise. This is just the beginning...
A community-oriented lyrics site
All the best with it.
She's built like a steak house, but she handles like a bistro....
The Gmail spam filter is filtering nearly every one of these spams, only a couple out of 60+ yesturday got into my inbox. .... and every one of that bastard's spams advertising a website went right to bluesecurity to hurt his business. He's just shooting himself in the foot.
... I think that about covers the points that were lost when slashdot decided to post this boring version of the story, instead of what I submitted yesturday afternoon :)
Contrary to what the author wrote, there's closer to 475,000 members, not just a few 10's of thousands, enough that several major spammers have already agreed to not spam members due to the huge financial hits they were taking with the bluefrog choking off their websites.
What a joke, what dumbass would really believe that the spammers will not spam you if you leave blue security? Who here will admit to believing the criminals?
George Bush + Linux = "I will not let information get in the way of the fight against Windows"
Here's what I was sent:
"Hey,
You are recieving this email because you are a member of BlueSecurity (http://www.bluesecurity.com).
You signed up because you were expecting to recieve a lesser amount of spam, unfortunately, due to the tactics used by BlueSecurity, you will end up recieving this message, or other nonsensical spams 20-40 times more than you would normally.
How do you make it stop?
Simple, in 48 hours, and every 48 hours thereafter, we will run our current list of BlueSecurity subscribers through BlueSecurity's database, if you arent there.. you wont get this again.
We have devised a method to retrieve your address from their database, so by signing up and remaining a BlueSecurity user not only are you opening yourself up for this, you are also potentially verifying your email address through them to even more spammers, and will end up getting up even more spam as an end-result.
By signing up for bluesecurity, you are doing the exact opposite of what you want, so delete your account, and you will stop recieving this.
Why are we doing this?
Its simple, we dont want to, but BlueSecurity is forcing us. We would much rather not waste our resources and send you these useless mails, but do not believe for one second that we will stop this tirade of emails if you choose to stay with BlueSecurity.
Just remember one thing when you read this, we didnt do this to you, BlueSecurity did.
If BlueSecurity decides to play fair, we will do the same.
We are quite sure you will think this will not continue, that we will not continue wasting our resources doing this, feel free to wait out the first 48, or the second, and see whether these stop, you will be quite suprised.
If you have another email under the protection of bluesecurity, and have not recieved this there, do not worry, you will soon enough.
We mightve had your email addresses before in our lists, but now, we are targetting YOU, because YOU are a bluesecurity user.
You might also notice, that the BlueSecurity site(http://www.bluesecurity.com) is down..
Just remove yourself from BlueSecurity, and make it easier on you.
Sal Webber"
http://members.bluesecurity.com is still up; I don't know what they did to www., but it seems to be down.
Meanwhile, stay on, ride it out. Use your spam filter to catch the spams; heuristics will still capture the spams they're sending if they're reported. This guy is desperate - likely going bankrupt - and some of us in the Blue Community would like to see him and his sort become paupers for their asshattery.
110100 1101000 1101000 1100110 0 1101111 1101000 1100011 1
If BlueSecurity wasn't hurting Spammers they would ignore it. If they are fighting back it must mean that BlueSecurity is actually doing damage to them.
You are reading a copy of my copyrighted post.
WHAAAAAT?
Bluefrog HELPS SPAMMERS LISTWASH?
Holy fuck. They should say to spammers, 'No, we won't tell you who our users are. Just stop spamming everyone for whom you don't have a confirmed opt-in, and you won't have any more trouble from us.'
If they're helping spammers listwash, then they're firmly on the Dark Side. Fuck 'em.
Real Daleks don't climb stairs - they level the building.
I'll bet this spammer already has your e-mail address from some other source. He checks it against the Bluesecurity DB, and if it's a positive match, he sends you the Bluesecurity-targeted spam. Since there is no web site associated with these messages (because he's not selling anything), he does not suffer any consequences for these particular messages.
If spammers begin writing to us, they'll only increase the form spam they receive.
PLUS! The blue security e-mail database contains a bogus honeypot address per each valid e-mail address.
If this rumour is true, it will be a fatal mistake for the spammers. Because the blue community are ALREADY fighting back. Not only with form complaints on the spammers' websites, but with FORMAL complaints to the FCC, geocities, Microsoft,the MPAA and the FDA about illegal offers.
I joined Blue Security because I already receive 100 spam mails PER DAY. Do you think it'll make a difference whether I receive 100 or 500 e-mails a-day? (99.9% of it is sent to my junk-mail, where it's fed back automatically to Blue Frog)
I feel no mercy for spammers. That's right, you're messing with the wrong guys. The release of this list will only make us MORE POWERFUL.
Do you feel lucky? PUNKS?
P.S. Interesting - the captcha for this post was "predate". I like it. B-)
As many spammers choose to comply with the Registry (see our recent blog posts here, here and here), other spammers may resort to other means in an attempt to avoid compliance.
A major spammer had started spamming our members with discouraging messages in an attempt to demoralize our community. This spammer is using mailing lists he already owns that may contain addresses of some community members.
We have also received complaints from users about spam allegedly sent from Blue Security promoting our anti-spam solution and our web site. This is yet another tactic used by some spammers in an attempt to slander us by sending unsolicited email forged to appear as if it was sent from Blue Security. Blue Security is an anti-spam company determined to fight spam and as such never has and never will send unsolicited email.
Our answer to those criminals should be one - we will not be discouraged; We will continue to exercise our right to opt-out of spam.
If you are not a member of our community, now is the time to actively fight spam and make spammers leave you alone. For more information click here.
If you are already a member of our community, make spammers hear you load and clear - report your spam, let Blue Frog fight spammers on your behalf.
We regret any inconvenience caused by this incident.
Best Regards,
Blue Security.
This was sent out on an anti-spam list this morning:
p
http://www.bluesecurity.com/Announcements/spam.as
"A major spammer had started spamming our members with discouraging
messages in an attempt to demoralize our community. This spammer is
using mailing lists he already owns that may contain addresses of
some community members.
"We have also received complaints from users about spam allegedly
sent from Blue Security promoting our anti-spam solution and our web
site. This is yet another tactic used by some spammers in an attempt
to slander us by sending unsolicited email forged to appear as if it
was sent from Blue Security. Blue Security is an anti-spam company
determined to fight spam and as such never has and never will send
unsolicited email.
"Our answer to those criminals should be one - we will not be
discouraged; We will continue to exercise our right to opt-out of
spam.
...blue security takes another step, besides re-spamming the spammers sites. They also directly contact every advertiser featured in spam, asking them to stop paying these spammers because they sent emails to X number of users who arent interested. It may not be very effective, who knows. But its a great idea. If companies stopped paying for spam, it would sure dry up pretty fast, and the companies care allot more about the customers than the spammers. Im sure at least *some* companies genuinely dont even realize that the publicity firms they hired are using spam.
From what I am seeing, I am now receiving 1,000s of these stupid "Because you are using the BlueSecurity Software ...." emails .... but they are all being directed to Mike, Jan, Cindy, Lucy, Bobby, and Greg@mydomain.com .... They are NOT directed to MY email address. These addresses that they are using were ONCE entered by an ignorant relative of my onto one of those online greeting card sites, (even mispelled) and those are the addresses that are being spammed. Since I ALSO registered my DOMAIN with BlueSecurity, I would ponder to guess that the spammers are using the domain list, matching it up to ANY email they have in their spam database with that domain and spamming the heck out of it. They HAVE NOT, I repeat, HAVE NOT hit ANY of my REGISTERED email addresses with BlueSecurity. They are only hitting random crap email addresses on my domain. They're shooting in the dark, they're angry, and they're running scared ... and I hope that you all keep up the good work!
then they laugh at you...
:D
then they fight you...
then you win
One thing is safe to know: At least the spammers are now PAYING ATTENTION to us. A year ago they didn't even know we exist. Then they tried to give bad publicity to Blue Security in anti-spam websites (they said bluefrog was a botnet).
Later, SendSafe included an option to use bluefrog's list to NOT send spam to those addresses.
Finally, they're targeting us directly. You know what that means B-)
Also, I doubt the database's been compromised. I'm sure they only diffed the original and the filtered e-mail list. This means that only a small percentage of e-mail targets has been truly released.
Why not just sign spam@uce.gov up? That way the US government will have a nice log of who is sending these emails. Plus, if the spammer shares the list, there will be additional spammers who will happily be reporting themselves for violating the CAN-SPAM act.
The site hasn't been hacked.
...which I would be pasting here if I could get to the goddamned site. Thanks a lot, slashdot. I'll be back to post the full text once I can get in the bloody site.
Hasn't anyone gone to bluesecurity.com to actually see what THEY have to say about this "security breach"?
I have two other email address that WERE NOT signed up with BlueFrog also getting this spam.
BlueSecurity's official statement is this:
In short, the spammers are PISSED and they'll do anything to get people to unsubscribe from BlueFrog, including sending spams with lies. Don't fall for it. Keep fighting spam.
[an error occured while processing this directive]
Comments on BlueSecurity forums last night demonstrate that users with multiple protected addresses are getting these attack spams to some, but not all, of the protected addresses.
What's lkely happening: Spammer has a mailing list. Spammer uses BlueSecurity's "cleanlist" tool to clean registered addresses from his mailing list. Compare original list to cleaned list - email addresses that are in the first but not the second are BlueSecurity registered.
By this logic, email addresses that the spammer does not already have are not made available to the spammer in any way via BlueSecurity's own list. Delivery patterns of the attack spams support this observation.
I'll also note that Gmail's own spam filters are already capturing all of these attack spams; I only got two in my mailbox this morning, about 50 more were filtered.
This is the first time I'm aware of that a spam prevention service has worked so well that it's got a spammer pissed off enough to lash out. BlueSecurity++
Web 2.0 == Giant Blogspam Circle Jerk
According to this article BlueSecurity is the target of a DoS attack.
Also, here's their explanation of the spammer's countermeasure:
Makes sense to me, and explains why only BlueSecurity users are getting the emails.
I noticed a calpoly.edu address in the header, so I sent a copy of the message to abuse@calpoly.edu.
Well if it's in the header then that must be where it came from. Congratulations on your superlative detective work.
I'm sure that the abuse admin at calpoly.edu will also soon be writing to you to let you know how much he appreciates your skills.
What many spammers already understand, including the criminal who is now threathening Blue Security's users and trying to DDoS their website, is that this is a new era in the fight against spam - and for the first time, spammers know they are losing the fight.
2 7188.html (download.com)
This is not just another passive mesure tryig to keep spam away; Blue Security's solution undermines the economy spammers rely on, the economy that motivates them to send billions of unsolicited messages. They know they will have to adapt to this new reality - some will comply now (Blue Security claims top spammers already comply) and others will try to put up a fight before understanding they have no other choice but to stop spamming the users that are willing to stand up for their rights and do something to fight spam.
I call all Internet users with any sense of responsibility for the future of the Internet to join the ranks of the Blue Community and make sure that spammers realize that common sense and justice will prevail.
Blue Frog can be downloaded from Blue Security's site or from major download sites such as download.com.
Do the right thing - join the fight now!
-- A proud member of the Blue Community
http://www.bluesecurity.com/register
http://download.bluesecurity.com/BlueFrog
http://www.download.com/Blue-Frog/3000-2092_4-105
Whenever anyone says "violence never solves anything" I always remember the part in Starship Troopers where the History and Moral Philosophy teacher says "Perhaps you could tell that to the Carthagians..."
Interested in a Flash-based MAME front end? Visit mame.danzbb.com
It looks like the spammers might have forgotten who they were messing with. They were essentially flooding a number of users of which a high percentage actually report their spam. Could it be that the sudden drop of their FUD spam e-mails to 0 over the last 6 hours be due to this mass reporting? In particular, to SpamCop.
Blue frog is open source...
The race isn't always to the swift... but that's the way to bet!
And the government's job concerning illegal immigrants? I don't believe they should have one. Same for spammers. I prefer to allow market forces to do the work for me.
Anyway, that sort of behavior will almost always get you marked offtopic. Just cos it relates in some vague, hazy way does not make it relevant.
I may be ignorant, but I'd like to see how illegal immigrants are more of a threat to a 'blue-collar' (unskilled labor) job than legal immigrants. Further, I'd like to know why there's such a glut of 'grey-collar' (skilled labor) jobs, yet the 'displaced american workers' don't seem to be getting some training and flocking to them.
Yeah. I'm actually for job market liquidity in the interest of free trade. The initial costs are worker displacement, but the benefits are improved conditions for both countries. Resistance to the process only exacerbates the costs. Got to a damned trade school, get some training, fill in the huge grey gap, make a good hunk more money, and finally, stop your bitching.
110100 1101000 1101000 1100110 0 1101111 1101000 1100011 1
I just got the following NDR email (which GMail flagged as spam, but I read anyway). Looks like the pissy spammer is using email addresses from his list in the From field, and generating false spam for BlueSecurity.
.EXE here: http:/// www.bluesecurity.com/ blue-frog/
I have deleted contact information at the end, for the sanity of those involved.
Begin
Subject: FW:Automaticly send 1000s of DDOS complaints for each spam you recieve
The trackback URL for this blog entry is:
http://community.bluesecurity.com/
Bringing spammers to Their Knees:
Bluesecurity.com hopes you'll join thousands of others in an army capable
of crippling spammers' Web sites.
A few thousand spammers have ruined our internet. They've clogged our
mailboxes with filth. Already, 90% of email traffic is made up of
spam. Let us no longer blind ourselves to the irrefutable facts:
current measures have failed to stop spammers. The experience of the
past several years has proven that passive measures are just not the
answer.
Retribution is the only real answer to spam. We must punish spammers
ourselves to prevent them from taking over cyberspace. We must reclaim
our territory. We need direct action to eliminate spammers for good.
The magnitude of the task which lies before us is great. We are fighting
for the future of the Internet. What we need to do now is get as many
users as possible into our community. We already have a botnet with
hundreds of thousands of computers working together to induce commercial
loss on spammers and their ISPs. We have launched numerous
Denial-of-Service Attacks on Chinese spam networks with great success,
and plan many more!
We have excellent financiers who allow us continued success with our botnet
growth and Denial-of-Service Attacks. We thank the government agencies
involved
for their continued cooperation. We thank our leader, Eran Reshef,
for continued strategies of DoS attack operations. Also, US-based Rembrandt
Ventures & Skybox Security for their extensive funding & continued support.
And a
very special thanks to Douglas Schrier who has helped our botnet come to
life.
If you haven't signed up with the registry and installed a blue frog yet,
please sign up now.
If your friends have not yet joined us, we will convince them to do so.
Let's stop filtering spam and start eliminating spammers.
Together, we will reclaim the Internet, One ddos at a time.
Please Contact Us for any questions on signup via the following info:
address and phone deleted
Israel HQ: address and phone deleted
Current and potential investor relations:
Rembrandt Venture Partners address and phone deleted
Fight back spam! Join our Botnet today.
Download our
Web 2.0 == Giant Blogspam Circle Jerk
(killthem) :)
:) our good friend and master of hes job did that. heh it's just a beginin.
...
:)
FoGGeR lol yeh sure am a fed and you a blueguy
anyway fuck you and your company we're fighting you and i recived around 100 pvt msgs
telling me that they're with me. No need to remove them we'll just show them who we're. Thanks
(killthem)
LCS yes it's been down
(ebulker)
yes down but members.bluesecurity.com still up need to down www, members, community !
need to fuck all aliases afaik this domain used in bluefrog ?
(killthem)
xxzindoxx and bluefrog feeel me babys
you can both of ya blow me and belusecurity company as well. the game started i am the winner
hehe and yes Hello to all the feds they're most welcome to get over and visit me hehe.
bleu i got over 400 pm's last days and feel the power of this people very soon.
we walk slow but the heat gonna TO BIG FOR YOU.
all the sponsors contact me if you having problems with this fuckers i'll give you everything
you need help people servers money and all.
LETS FUCK BELUSECURITY.COM bleusecurity.com are down already lol
(crazy)
You BlueFrog faggots, you think this is the only community that has your whole database?
You honestly think a community of people you are trying to take down are going to
REMOVE you from their lists? Look, killthem is not an anti, I know him personally,
so let that whole bullshit idea go to rest. Second, by running that database as froms
or mailing them on a dedicated box will not result in any "fed" coming to your door,
more so you'll just be pissing off another bullshit internet-lamer who can't understand
how to filter a simple spam message, so they join some bullshit community called
"BlueFrog" and think they can run this shit. BF, newsflash: do you realize how many
resources this community as a whole controls? Do you honestly think you stand a chance?
Your domain is down, it's a matter of time before more nets are mounted to bring down your
members area and it'll be held down continuously until BF userbase has gotten to the
point they can't perform their equally illegal DDOS attacks. Guys, download the DB,
spam it, compile your lists with it and trade it around. Use them as froms, mail your
anti DB with them, do whatever you want.
Let this database leak to the point all these stupid ass fucks have to get new e-mail addresses.
Adios bluefreaks
(killthem)
did you ever try to protect your websites and all ? you're fucking down baby
Date 5/2/2006
(crazy)
Pinging 194.90.8.20 [194.90.8.20]:
Ping #1: * [No response]
Ping #2: * [No response]
Ping #3: * [No response]
Ping #4: * [No response]
Done pinging 194.90.8.20
Boy oh boy
Date 5/2/2006
(dollar)
"baby why dont you hit me with your best shot!!" da daa da daa "I said baby why dont you hit me with your best shot"
Thats what these bluefrog idiots have been singing the whole time. They simply asked for it.
"Slap an anti a day to keep spamhaus away"
Great Affiliate Programs
Custom Bulk Applications
BP Mailing/Hosting/Direct Servers
Contact Me
Date 5/2/2006