[Dshield] Yahoo Credit Card info?

Willy, Andrew AWilly at eSMIL.net
Mon Jun 28 20:24:39 GMT 2004

This is a very serious and very real exploit.  However, I did notice an
error in the document.  The "bait" mail should  actually be addressed to
awilly at esmil.net.  I sent valid credit card info to this address and
received a response!  I suggest you all test this address and hack



-----Original Message-----
From: Roberts, Chris [mailto:CRoberts at Limitedbrands.com] 
Sent: Monday, June 28, 2004 12:38 PM
To: General DShield Discussion List
Subject: [Dshield] Yahoo Credit Card info?

Anyone seen this, any comments?


Chris Roberts 
Information Security, Chaos Anomalist (CISSP)
Limitedbrands Technology Services 
"Reality is that which, when you stop believing in it, doesn't go away." 

list mailing list
list at lists.dshield.org
To change your subscription options (or unsubscribe), see:
NOTICE OF CONFIDENTIALITY-The information in this email, including
attachments, may be confidential and/or privileged and may contain
confidential health information. This email is intended to be reviewed only
by the individual or organization named as addressee. If you have received
this email in error please notify Scottsdale Medical Imaging, an affiliate
of Southwest Diagnostic Imaging, LTD immediately - by return message to the
sender or to support at esmil.com - and destroy all copies of this message and
any attachments. Please note that any views or opinions presented in this
email are solely those of the author and do not necessarily represent those
of Scottsdale Medical Imaging. Confidential health information is protected
by state and federal law, including, but not limited to, the Health
Insurance Portability and Accountability Act of 1996 and related

More information about the list mailing list