On Thu, 18 Apr 2002, Paul M Foster wrote:
> Verisign (Network Solutions) is sending snail mails around, telling
> people to renew their domain names. Trouble is, 1) those domain names
> weren't registered with Verisign in the first place, and 2) the
It is not at all clear that VeriSign sent it. I received
several of these forgeries -- check the Full headers -- looks
like a pure fraud with a web interface for the gullible. I
have spaced out each header line -- although a Reply-To is
set, the web URL is to:
http://inte-net.com/vs/migrate.cfm?id=5HPR5HPR1365RPH5h&link=0418T1
Hunh --
Registrant:
INTEGRAM (INTE-NET-DOM)
8421 Hilltop Rd.
Fairfax, VA 22031
US
INTEGRAM != VeriSign or NSI --- link is NOT https -- I think
it is a straight hijack attempt, in hopes of harvesting credit
cards
-- Russ
Return-Path: <bounces@maild.inte-net.com>
Received: from maild.inte-net.com (maild.inte-net.com
[63.71.102.111])
by swampfox.owlriver.com (8.11.6/8.11.6) with ESMTP id
g3J0MBT31564
for <herrold@OWLRIVER.COM>; Thu, 18 Apr 2002 20:23:35
-0400
Message-Id: <200204190023.g3J0MBT31564@swampfox.owlriver.com>
Received: from maild.inte-net.com (63.71.102.103) by
maild.inte-net.com
(LSMTP for Windows NT v1.1b) with SMTP id
<8.00007B3A@maild.inte-net.com>;
Thu, 18 Apr 2002 20:28:05 -0400
Content-type: multipart/alternative;
boundary="------------7C252360672B03A0BAD013A5"
Date: Thu, 18 Apr 2002 17:56:54 -0400
From: "VeriSign Inc." <migration@verisign.com>
Reply-to: "VeriSign Inc." <migration@verisign.com>
Subject: Important Information for Omni Telecomm
-- Russ Herrold
This archive was generated by hypermail 2.1.3 : Fri Aug 01 2014 - 20:17:33 EDT