unwarrented website testing.

Networking/Security Forums -> Exploits // System Weaknesses

Author: JamesMorgan PostPosted: Thu Dec 16, 2010 11:08 pm    Post subject: unwarrented website testing.
We came across some rogue lements doing involuntary tests on our form system on our website, we never asked to be tested, and we're not sure why we were bombed with 100 duplicate form mails.

Quiry type: Sales Query
Industry Type: Automotive
Company Name: Acunetix
Country: AF
First Name: 111-222-1933email@address.tst
Last Name: 111-222-1933email@address.tst
Email Address: sample@email.tst\' and \'1\'=\'0\' --
Phone Number: 555-666-0606
How did you find us? Google
Other Source? 111-222-1933email@address.tst
Notes: 111-222-1933email@address.tst
Date: 15-Dec-2010

I google the supplied email address and came across many other websites complaining about receiving this email.

My first impression after receiving this juunk was that some competitor or rogue elemtns were trying to mess with us, but forumers claiming that it is actually orignated from the company in question. Or so they say. http://www.topix.com/forum/news/spam/T5PO40JPSC7NJNIE0

I'm baffled, and it's stopped now so I haven't resorted to ip blockig them using htaccess.

Author: Fire AntLocation: London PostPosted: Thu Dec 16, 2010 11:40 pm    Post subject:
Hi James,

Perhaps you should also look at securing the form as well as blocking this address. Wink

Fire Ant

Networking/Security Forums -> Exploits // System Weaknesses

output generated using printer-friendly topic mod, All times are GMT + 2 Hours

Page 1 of 1

Powered by phpBB 2.0.x © 2001 phpBB Group