My MSN-honeypot catched in these moments another classical MSN Credentials theft.
The system used is the classical Offline Message sent by an already compromised contact.
Here the message:
Xxx check out these awesome pics from the awesome party LOL http://Yyy.nustuff4u.com
nustuff4u.com presents a classical form that asks for
and as usual the already see (please refer to my previous MSN releated blog posts) a disclaimer..
Now let’s investigate a bit on this domain..
|ICANN Registrar:||ENOM, INC.|
|Name Server:||DNS1.REGISTRAR-SERVERS.COM (has 151,962 domains)