?

Log in

No account? Create an account

Previous Entry | Next Entry

Well, I got a surprisingly polite e-mail from Microsoft a few minutes ago. It appears that some l33t skr1pt k1dd33 put a Hotmail phishing script on Filespace a few months ago. Fortunately, he was too stupid to make his PHP work (it was posted during the period when the server was misconfigured, allowing users to upload .htaccess files that gave them PHP), so no harm seems to have been done.

I've now 403ed the files in question.

Asshat.

Comments

( Read 4 comments — Leave a comment )
sangochan
Jan. 19th, 2005 01:49 pm (UTC)
Oh GOD. Those little bastards piss me off.

I hope you suspended his account + gave M$ the email address he listed with you. :P

Fucking script kiddies and phishers.
brentdax
Jan. 19th, 2005 07:11 pm (UTC)
I offered to give them all his account information plus every IP he's ever logged in with. (I record logins and logouts, but not file uploads.)
southernbeatnik
Jan. 20th, 2005 06:54 am (UTC)
Just curious, how was the script in question meddling with Hotmail?
Nice ownage though.
brentdax
Jan. 20th, 2005 11:47 am (UTC)
It mimicked the Hotmail login page; presumably the account's owner then tricked people into using that page instead of the one on Hotmail.com. Or would have, if he ever got the thing to work, which I don't think he did. *rolls eyes*
( Read 4 comments — Leave a comment )