Regular phishing emails (or How to remove passwords from mail on Yandex)
Post from the category of "forewarned is forearmed".
I found an interesting letter in my mail today.
Another way to get cookies from the mail. When you click on a button, a request is sent to the sniffer at: h_ttp: //yadrex.ru/sn/s.hp (at: h_ttp: //yadrex.ru/sn/ control panel / access to the sniffer logs) Yandex home page.
')
Mailing is carried out through mailgermes.beget.ru (81.222.215.236). The same IP is attached domain yadrex.ru.
Maybe my e-mail address was on the list of “well-wishers” mass mailings, who wanted to get a box for resale (they use it for registering accounts with various services, mailings, etc.), and maybe they ordered my box specifically (on some resources so and are full of announcements about the "recovery of lost passwords from mail"), if so, it is not clear why.
PS Yes, Habrayuzer smart, he will not lead to such a divorce, but there are friends, wives, parents, children. Be careful.
Happy 2012! All health, joy and happiness!
UP: Button code temporarily removed
UP2:
alex32 found yadrex.ru/mail/ (under Mail.ru)
LMaster found yadrex.ru/gmail/ and yadrex.ru/rambler/ (under Gmail and Rambler)
UP3 madde , New addresses: _Http: //yandex.authorised.ru/, mail.authorised.ru/ etc. Old domains already in phishing lists
I found an interesting letter in my mail today.
Another way to get cookies from the mail. When you click on a button, a request is sent to the sniffer at: h_ttp: //yadrex.ru/sn/s.hp (at: h_ttp: //yadrex.ru/sn/ control panel / access to the sniffer logs) Yandex home page.
')
Mailing is carried out through mailgermes.beget.ru (81.222.215.236). The same IP is attached domain yadrex.ru.
Maybe my e-mail address was on the list of “well-wishers” mass mailings, who wanted to get a box for resale (they use it for registering accounts with various services, mailings, etc.), and maybe they ordered my box specifically (on some resources so and are full of announcements about the "recovery of lost passwords from mail"), if so, it is not clear why.
PS Yes, Habrayuzer smart, he will not lead to such a divorce, but there are friends, wives, parents, children. Be careful.
Happy 2012! All health, joy and happiness!
UP: Button code temporarily removed
UP2:
alex32 found yadrex.ru/mail/ (under Mail.ru)
LMaster found yadrex.ru/gmail/ and yadrex.ru/rambler/ (under Gmail and Rambler)
UP3 madde , New addresses: _Http: //yandex.authorised.ru/, mail.authorised.ru/ etc. Old domains already in phishing lists
Source: https://habr.com/ru/post/135606/
All Articles