[Dshield] Re: [Dsheild] Clubx.biz spam

Kenneth Coney superc at visuallink.com
Thu Oct 30 16:53:53 GMT 2003

Because they were idiots or not up on spammer tactics, doesn't make them 
less of a victim.  You made a presumption.  Since I didn't ereply to bizx's 
mailing, and indeed didn't even know of it until I was halfway down the 
inbox I would take the position that anyone who received 130 or so emails 
saying please unsubscribe me is also a victim even though they didn't send 
out anything.  Simply because they are getting mail.  All spam recipients 
are victims from my perspective.  (Yes, I know, configure your mailbox to 
auto delete anything from anyone you haven't pre approved.  That is one way 
of solving spam problems.  However, you miss so many potential clients that 
way though.)  What was interesting is the clubx.biz second "test" mailing 
went out with the bogus return email, the email adressees real name, 
profession and  the victim's actual telephone number.  Of course if there 
is a way to tell an actual human not to spam us and a name to blame we will 
go for it.
By sheer luck one of these "victims" was in the IT field and also running 
it down when I called.  The implication is clubx used an electronic 
business card list rather than a simple mailing list.

Subject: Re: [Dshield] Re: [Dsheild] Clubx.biz spam
From: John Sage <jsage at finchhaven.com>
Date: Wed, 29 Oct 2003 08:25:19 -0800
To: General DShield Discussion List <list at dshield.org>

Come on, folks. Think.

On Tue, Oct 28, 2003 at 05:16:23PM -0500, Kenneth Coney wrote:

 >> An interesting nuisance popped up today.  Call themselves clubx.biz They
 >> send out a spam email announcing a recipient can sign up an get hits to
 >> their website.  Those who don't want to receive the mailings can
 >> unsubscribe by writing to Access at clubx.biz (don't write to them) and
 >> unsubscribe.  A password needed to unsubscribe is also supplied.  Many do.

"Many do"?

In what distant corner of the galaxy are there people who have not
learned that "unsubscribing" from spam is:

1) utterly ineffectual

2) a sure invitation to more spam, or worse, which is what has
happened here.

 >>  The fun is the "unsubscribe me" letter is then redirected and bounced by
 >> Access-bounces at clubx.biz and forwarded to random email addresses.  This
 >> generates a flood of back and forth email.  unsubscribe me, why you 
 >> to me, aren't you the clubx.biz?, no I ain't., etc.  An additional game
 >> being played byy clubx.biz is the sending to random email addresses the
 >> following:

Serves 'em right...

/* snip */

 >> Another victim tells
 >> me he has learned ev1.net rented the server to a company that rented the

No. Not a "victim".

An idiot, perhaps, or perhaps a victim of his/her own stupidity, but
most certainly not a "victim" as that overworked term is so commonly
thrown about these days.

- John
-- "Most people don't type their own logfiles; but, what do I care?" - John 
Sage: InfoSec Groupie - ABCD, EFGH, IJKL, EmEnOh, Pplus+, Mminus- - 
ATTENTION: this entire message is privileged communication, intended for 
the sole use of its recipients only. If you read it even though you know 
you aren't supposed to, you're a poopy-head.

More information about the list mailing list