|
|
|
@ -2,7 +2,7 @@
|
|
|
|
|
title = 'Netcup phishing'
|
|
|
|
|
summary = 'They really think I got my domain from Netcup \*lol\*'
|
|
|
|
|
date = '2023-11-17T16:35:12+0100'
|
|
|
|
|
lastmod = '2023-11-18T11:15:48+0000'
|
|
|
|
|
lastmod = '2023-11-18T11:50:01+0000'
|
|
|
|
|
# categories = [ 'spam' ]
|
|
|
|
|
# tags = []
|
|
|
|
|
|
|
|
|
@ -407,9 +407,20 @@ main criteria why this email is no valid in no way: my domain `oe7drt.com` is
|
|
|
|
|
not managed at Netcup at all. There is just an A and AAAA (and others) record
|
|
|
|
|
that points to a root server at Netcup.
|
|
|
|
|
|
|
|
|
|
{{< alert >}}
|
|
|
|
|
**Update on Nov 18 2023**:
|
|
|
|
|
Oh, just because I updated the new URL they present you: they also send from a
|
|
|
|
|
new hostname: `v2202311110463243091.nicesrv.de` -- well, both domains are
|
|
|
|
|
saved on Netcup DNS servers which may indicate something ;-)
|
|
|
|
|
{{< /alert >}}
|
|
|
|
|
|
|
|
|
|
I thought I might share this one as well, because I get about 6-8 emails per day
|
|
|
|
|
about my "netcup domain". The fun thing is, one of the domain has a _noreply_ in
|
|
|
|
|
the domain name; I use this for several git repositories (like Github does). And
|
|
|
|
|
to eliminate any kind of misinterpretation: the domain includes **noreply** --
|
|
|
|
|
not **nodeliver**.
|
|
|
|
|
|
|
|
|
|
## Quite a few huh?
|
|
|
|
|
|
|
|
|
|
![image showing 18 mails from November 6 to November 18](mails.png "Quantity is not the same as quality.")
|
|
|
|
|
|
|
|
|
|