Bluefrog under attack?

  • Thread starter Thread starter Johan
  • Start date Start date
I have gotten no nasty notes at all in my 4 addresses listed with
BlueFrog!Not one!So they are crappy as hell about getting all our
addresses or Im the only lucky one in the world!My luck isnt that
good!So that story doesnt add up.Spammers are liars and thiefs or we
would all have won a million dollars by now.How many spams start you
are a winner?So Im backing the frog,get a backbone if your sick of the
spam my God!
 
http://www.realtechnews.com/posts/3011)))UPDATE: Spammer Desperately
Tries to Undermine Blue Security
May 4, 2006

By David Johnston
Contributing Writer, RealTechNews

In what appears to be a last-ditch attempt at scaring subscribers to
Blue Security's "Do Not Intrude" registry, one very prominent
spammer has started to resort to scare-tactics targeted toward members
of the Blue Security community. I received one of these emails today,
and while it sounds forboding it is, as one Blue Security community
member said, "like a sheep in wolf's clothing". Here are the
relevant contents of the email:

Update #1: The Blue Security website has been hit by a DoS attack and
is currently down, though their software is still working. If you're
interested in more reading on the subject, you can look through this
excellent article on Blue Security.

Update #2: I have yet to receive a single additional spam email to any
of my email addresses. The promised increase in spam has yet to show up
for me, though others are reporting more heavy spamming, especially of
notices similar to this one. The Blue Security website continues to be
under attack from spammers, but I was able to get through for a few
minutes to see that they have posted up a new message to spammers
saying that they will not back down and will continue to fight against
them.

Update #3: While reading the comments keep in mind that Fred, Mark,
Laurie, Ronald, Killthem, SpamKing, Rick, Frank, and Paul are all the
same person. This same spammer used the same person's computer to
post all of his comments under these various aliases. You should also
notice the similar spelling and grammar mistakes in all of his posts.

Update #4: One of my email accounts has started receiving bounced spam
messages indicating that the spammers have started using it as the
"from" address on their spams. My other 3 protected accounts have
seen no activity, I'm assuming because they weren't on this
spammer's list to begin with.

Update #5: It appears as though Blue Security is slowly but surely
bringing their site back online. I can now access the members' area
and log in. My Blue Frog software is also connecting again. If you want
to sign up, but haven't been able to, you should be able to do that
now-barring any new, unforseen attacks on the website.

Hey,

You are recieving this email because you are a member of
BlueSecurity (http://www.bluesecurity.com).

You signed up because you were expecting to recieve a lesser amount
of spam, unfortunately, due to the tactics used by BlueSecurity, you
will end up recieving this message, or other nonsensical spams 20-40
times more than you would normally.

How do you make it stop?

Simple, in 48 hours, and every 48 hours thereafter, we will run our
current list of BlueSecurity subscribers through BlueSecurity's
database, if you arent there.. you wont get this again.

We have devised a method to retrieve your address from their
database, so by signing up and remaining a BlueSecurity user not only
are you opening yourself up for this, you are also potentially
verifying your email address through them to even more spammers, and
will end up getting up even more spam as an end-result.

By signing up for bluesecurity, you are doing the exact opposite of
what you want, so delete your account, and you will stop recieving
this.

Why are we doing this?

Its simple, we dont want to, but BlueSecurity is forcing us. We
would much rather not waste our resources and send you these useless
mails.

Its simple, we dont want to, but BlueSecurity is forcing us. We
would much rather not waste our resources and send you these useless
mails, but do not believe for one second that we will stop this tirade
of emails if you choose to stay with BlueSecurity.
Just remember one thing when you read this, we didnt do this to
you, BlueSecurity did.

If BlueSecurity decides to play fair, we will do the same.

Just remove yourself from BlueSecurity, and make it easier on you.

Gena Elmore

This sounds scary, but it's not as bad as it sounds. Blue
Security's email address registry remains secure contrary to what
this spammer would have you believe. The way subscribers' emails were
obtained was by checking the spammer's own list of emails against the
Do Not Intrude registry. Normally spammers will get the emails of those
who subscribe returned to them and will then remove those emails from
their spamming lists. This one, however, has taken another approach.
Instead of taking those hits off of his spam lists, he is sending them
these intimidating emails.

What's so funny about this approach is that if you do remove yourself
from the Blue Security registry, you'll still receive normal spam
from this spammer. He has no intention of taking your email address off
of his spam list, he just wants you to stop fighting back against the
spam you already receive from him (Blue Security only goes after
spammers who send spam emails with no opt-outs to its members). Emails
like this are proof that Blue Security is getting noticed by these
spammers by making it unprofitable for them to continue sending their
unsolicited mail to unwilling recipients. Recently Blue Security has
made great strides toward its goal of eliminating spam for its users.
On the account where I received this email, I used to receive over a
dozen spams every day. Recently, within the past two weeks, I have seen
spam to this address slow and almost halt. Today I'm averaging just
one or two spam emails daily.

I personally hope that this email has the opposite effect from what
this spammer wishes. Hopefully, more people will sign up for the Do Not
Intrude registry, and make Blue Security even stronger. Learn more
about how Blue Security is fighting spam here. You can also read a lot
of the current stories of success against the spammers in their blog,
here.
 
I personally hope that this email has the opposite effect from what
this spammer wishes. Hopefully, more people will sign up for the Do Not
Intrude registry, and make Blue Security even stronger.
Click to expand...

It's made me sign up.
 
hmmmmm... @Ron

if it doesnt work, why
1> was the site attacked? apprently it did do "something"
Click to expand...

Try THIS on for a conspiracy theory: Maybe the emails were sent by
Bluefrog to get noticed and the site was intentionally taken down to
get gullible people to believe "Well, if spammers are going to attack
it and the subscribers, it MUST work." Far out, but makes as much
sense as accepting as an article of faith that the attacks somehow
"prove" the service works without independently verifiable evidence
that the service actually does reduce spam.
2> you did not respond to my earliar post. plz do have a look :)
Click to expand...

My apology for at least not making a courtesy reply. I did read the
two blogs, but found them no more convincing than the conspiracy
theory in my paragraph above. The snub was not intentional. I posted
a rather lengthy response to another post lower in the thread that I
felt covered your messages as well. In retrospect, I should have
included at least one line of acknowledgement.
3> i again ask you to read something (if i may!):
http://www.realtechnews.com/posts/3011

from this very page:
Click to expand...

I read it. I also scanned the 233 posts and while Bluefrog fanatics
seemed to be in the majority, there were mixed results from the more
moderate posters who actually addressed the issue of whether using the
service resulted in an increase or decrease in spam. (And shouldn't
THAT be the criteria for deciding to use the service or not?)

Long time readers of this group will remember many "Mailwasher"
lemmings who simply could not be convinced to turn off the "bounce"
feature because they were TRUE BELIEVERS that it actually made a
difference in the amount of spam emails they received. Mailwasher
itself was (and LFW still is) a worthy and useful program, but the
"bounce" feature did nothing but add useless traffic and often create
unintended "spam" messages to people whose email address was spoofed
by a spammer. I see the same fervor being displayed by Bluefrog
converts.

Also, I don't know the credentials of the bloggers you use as
reference, but here's Fred Langa's take:

http://langa.com/newsletters/2005/2005-10-24.htm#2

Here's what Bob Rankin (Tourbus) had to say:

http://www.askbobrankin.com/blue_security_spam_solution.html

That leads "Aunty-Spam's Internet Patrol" article:

http://www.theinternetpatrol.com/bl...bforms-its-blurry-hashed-for-extra-inaccuracy

That leads to Brian McWilliams "S*PAM KiNgS" article:

http://spamkings.oreilly.com/archives/2005/08/blue_frog_and_t.html

If a "Who's Who" list like the above isn't sold on Bluefrog, I feel
like I'm in good company. Readers of THIS newsgroup also tend to be
more wary of what kind of code a program might be executing in the
background that the average user, and how their machines might be used
by another party without THEIR understanding the process completely.

If you can find one or more RECOGNIZED and RESPECTED internet gurus
who is willing to put their credibility on the line in support of
Bluefrog, I'll follow your link, but I won't chase any more sock
puppets.

I'd REALLY be impressed if one of these credible individuals went so
far as to impartially measure whether there was an increase or
decrease in spam as a result of the service by running independent
tests.

As I said before, if you're happy with Bluefrog, then I'm happy for
you. Just don't try to get me to drink the kool-aid with you.

--
Ron M.
 
The first address you list doesn't connect at all I tried 3 times.Ive
read the others and the last address is unsure of its view .some for
some against.So I'm not sure of those either I got mine from Wiki a
well known source.So your afraid to act on it,then don't bitch about
getting spam.Its thats easy.I tend to take a stand on things.I'm
backing anyone who tries to fight for us!Those that don't ,don't
complain about it.
 
The first address you list doesn't connect at all I tried 3 times.Ive
read the others and the last address is unsure of its view .some for
some against.So I'm not sure of those either I got mine from Wiki a
well known source.So your afraid to act on it,then don't bitch about
getting spam.Its thats easy.I tend to take a stand on things.I'm
backing anyone who tries to fight for us!Those that don't ,don't
complain about it.
Click to expand...


"I got mine from Wiki a well known source."

Well that explains a lot. <g>

(Certainlly more authoritative than Fred Langa, Bob Rankin and others.
After all, what could they possibly know compared to "Wiki.")
 
Who knows in the end we will see who's right.I have been getting a lot
less spam in the last week.If it proves to work I'm right.If it doesn't
you are.Time will tell us which is right and who is gullible wont it.:)
 
http://www.securitypronews.com/insi...20060503BlueFrogSpamWarEscalates.html)))))The
Blue Security website has been running with a minimal presence
recently, a condition company CEO Eran Reshef said in a TechWeb report
had been caused by the extra publicity surrounding the story of the
spammer's threats.

That publicity included notice on both Slashdot and Digg. The heavy
tech-oriented readership of both sites can bring a website to a crawl
when they hit a linked story in massive numbers. That plus attacks by
Russian spammers have made some of the site's pages unavailable.

Blue Security's Blue Frog software works by catching spams that hit the
inbox of a Blue Frog user. Blue Security analyzes those messages and
traces them back to their senders. Then they fill out an opt-out form
if available, or generate a complaint message to the spammer.

Once that has been done, every time a spam hits a Blue Frog member
another opt-out or complaint is generated automatically and sent back
to the source. Reshef said in the article that the Blue Frog registry
numbers over 500,000 members.

Reshef also said the database of users Blue Security has is encrypted,
and the spammer does not have access to that list. "Our members are not
in any jeopardy of 'exposure' since the spammers already have their
addresses. That is why they joined the Blue Community, to stop spam at
its source," he said in the report.

The CastleCops security website summarized the attacks on Blue Security
in a recent post. Those include the spammers sending out messages faked
to look like they come from Blue Security, and hitting the Blue
Security websites with Denial of Service attacks.

Reshef observed that the mass email threats and attacks on Blue
Security indicate the Blue Frog registry and actions are working. He
said in the article four major spam rings that generate eight percent
of the world's spam have agreed to back off and leave members of the
Blue Frog registry alone. (((hmmm sounds good for my side!)))
 
Back
Top