Re: Possible fraud report ... was: Re: [SLUG] Verisign Scam

From: Derek Glidden (dglidden@illusionary.com)
Date: Thu Apr 18 2002 - 23:29:05 EDT


On Thu, 2002-04-18 at 22:37, R P Herrold wrote:
> On Thu, 18 Apr 2002, Paul M Foster wrote:
>
> > Verisign (Network Solutions) is sending snail mails around, telling
> > people to renew their domain names. Trouble is, 1) those domain names
> > weren't registered with Verisign in the first place, and 2) the
>
> It is not at all clear that VeriSign sent it. I received
> several of these forgeries -- check the Full headers -- looks

Verisign is sending out *snail mail* "hijack" attempts. And they are
*definitely* from Verisign.

We have also had a number of our domain registration clients asking us
if the Verisign notices they've gotten in snail and e-mail telling them
they need to "renew" their domains are legit. I don't know if there are
other people out there doing bogus Verisign emails, but I know the snail
mail is from them because I've seen the snail mail letters, and assumed
that there was an email disinformation campaign being waged
simultaneously.

-- 
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
#!/usr/bin/perl -w
$_='while(read+STDIN,$_,2048){$a=29;$b=73;$c=142;$t=255;@t=map
{$_%16or$t^=$c^=($m=(11,10,116,100,11,122,20,100)[$_/16%8])&110;
$t^=(72,@z=(64,72,$a^=12*($_%16-2?0:$m&17)),$b^=$_%64?12:0,@z)
[$_%8]}(16..271);if((@a=unx"C*",$_)[20]&48){$h=5;$_=unxb24,join
"",@b=map{xB8,unxb8,chr($_^$a[--$h+84])}@ARGV;s/...$/1$&/;$d=
unxV,xb25,$_;$e=256|(ord$b[4])<<9|ord$b[3];$d=$d>>8^($f=$t&($d
>>12^$d>>4^$d^$d/8))<<17,$e=$e>>8^($t&($g=($q=$e>>14&7^$e)^$q*
8^$q<<6))<<9,$_=$t[$_]^(($h>>=8)+=$f+(~$g&$t))for@a[128..$#a]}
print+x"C*",@a}';s/x/pack+/g;eval 

usage: qrpff 153 2 8 105 225 < /mnt/dvd/VOB_FILENAME \ | extract_mpeg2 | mpeg2dec -

http://www.cs.cmu.edu/~dst/DeCSS/Gallery/ http://www.eff.org/ http://www.anti-dmca.org/



This archive was generated by hypermail 2.1.3 : Fri Aug 01 2014 - 20:17:55 EDT