psxcite
November 12th, 2007, 03:51 AM
Seems hackers got the What.CD user database and they are sending fake RIAA emails to all the users. Must have happened during the SQL injection hack.
Delivered-To: my@address
Received: by 10.115.106.10 with SMTP id i10cs44735wam;
Mon, 12 Nov 2007 02:35:00 -0800 (PST)
Received: by 10.114.190.6 with SMTP id n6mr271088waf.1194863700180;
Mon, 12 Nov 2007 02:35:00 -0800 (PST)
Return-Path:
Received: from spunkymail-mx6.g.dreamhost.com (mx1.spunky.mail.dreamhost.com [208.97.132.47])
by mx.google.com with ESMTP id m27si5736940wag.2007.11.12.02.34.59;
Mon, 12 Nov 2007 02:35:00 -0800 (PST)
Received-SPF: neutral (google.com: 208.97.132.47 is neither permitted nor denied by best guess record for domain of riaa@bitient.org) client-ip=208.97.132.47;
Authentication-Results: mx.google.com; spf=neutral (google.com: 208.97.132.47 is neither permitted nor denied by best guess record for domain of riaa@bitient.org) smtp.mail=riaa@bitient.org
Received: from bitient.org (unknown [85.17.201.73])
by spunkymail-mx6.g.dreamhost.com (Postfix) with ESMTP id 6EABC2D320
for ; Mon, 12 Nov 2007 02:34:35 -0800 (PST)
Received: (qmail 21760 invoked by uid 10012); 12 Nov 2007 11:34:22 +0100
Date: 12 Nov 2007 11:34:22 +0100
Message-ID: <20071112103422.21757.qmail@bitient.org>
To: my@address
Subject: Music Piracy
From: piracy@riaa.org
Reply-To: piracy@riaa.org
X-Originating-IP: [76.74.24.143]
X-Originating-Email: [piracy@riaa.org]
X-Mailer: Internet Mail Service
Subj: Music Piracy
Date: Mon, Nov 12, 2007 at 4:35 AM
From: piracy@riaa.org
----------------------------------------------------------------
Dear registered user of the site What.cd,
We have recently been investigating the activities of the users of the
site http://www.what.cd/ and we have found that this site exists for the
sole purpose of music piracy.
Pirating music is a criminal offence and we believe it should be obvious
to you that the results outweigh the benefits - hard working artists
won't be rewarded for their work and will stop producing music,
ultimately leading to a severely reduced selection of music both in the
shops and for download.
The RIAA had hoped that the disabling by the police of the large illegal
music site, Oink.cd, would stop a lot of people from engaging in piracy,
as they don't want to be seen as criminals. However, this appears to
not be the case, as two large new sites have sprung up in its place.
This email is the final warning to all of you who were members of
Oink.cd and are current members of What.cd. If we find you to be
committing any more criminal acts of piracy then we will have to press
charges against you, as representatives of the major record companies of
America.
Yours Faithfully,
The RIAA
Oh you silly script kiddies. Get a life.
FYI
Consider your passwords disclosed.
The attacker probably has a copy of password hashes and with a bit of effort can result in cracking of your password.
Change your passwords elsewhere!
Luckily for me, I use a different password on everysite. Keep in mind, even if they don't crack the PW, they can still use it so - CHANGE YOUR PASSWORDS.
Delivered-To: my@address
Received: by 10.115.106.10 with SMTP id i10cs44735wam;
Mon, 12 Nov 2007 02:35:00 -0800 (PST)
Received: by 10.114.190.6 with SMTP id n6mr271088waf.1194863700180;
Mon, 12 Nov 2007 02:35:00 -0800 (PST)
Return-Path:
Received: from spunkymail-mx6.g.dreamhost.com (mx1.spunky.mail.dreamhost.com [208.97.132.47])
by mx.google.com with ESMTP id m27si5736940wag.2007.11.12.02.34.59;
Mon, 12 Nov 2007 02:35:00 -0800 (PST)
Received-SPF: neutral (google.com: 208.97.132.47 is neither permitted nor denied by best guess record for domain of riaa@bitient.org) client-ip=208.97.132.47;
Authentication-Results: mx.google.com; spf=neutral (google.com: 208.97.132.47 is neither permitted nor denied by best guess record for domain of riaa@bitient.org) smtp.mail=riaa@bitient.org
Received: from bitient.org (unknown [85.17.201.73])
by spunkymail-mx6.g.dreamhost.com (Postfix) with ESMTP id 6EABC2D320
for ; Mon, 12 Nov 2007 02:34:35 -0800 (PST)
Received: (qmail 21760 invoked by uid 10012); 12 Nov 2007 11:34:22 +0100
Date: 12 Nov 2007 11:34:22 +0100
Message-ID: <20071112103422.21757.qmail@bitient.org>
To: my@address
Subject: Music Piracy
From: piracy@riaa.org
Reply-To: piracy@riaa.org
X-Originating-IP: [76.74.24.143]
X-Originating-Email: [piracy@riaa.org]
X-Mailer: Internet Mail Service
Subj: Music Piracy
Date: Mon, Nov 12, 2007 at 4:35 AM
From: piracy@riaa.org
----------------------------------------------------------------
Dear registered user of the site What.cd,
We have recently been investigating the activities of the users of the
site http://www.what.cd/ and we have found that this site exists for the
sole purpose of music piracy.
Pirating music is a criminal offence and we believe it should be obvious
to you that the results outweigh the benefits - hard working artists
won't be rewarded for their work and will stop producing music,
ultimately leading to a severely reduced selection of music both in the
shops and for download.
The RIAA had hoped that the disabling by the police of the large illegal
music site, Oink.cd, would stop a lot of people from engaging in piracy,
as they don't want to be seen as criminals. However, this appears to
not be the case, as two large new sites have sprung up in its place.
This email is the final warning to all of you who were members of
Oink.cd and are current members of What.cd. If we find you to be
committing any more criminal acts of piracy then we will have to press
charges against you, as representatives of the major record companies of
America.
Yours Faithfully,
The RIAA
Oh you silly script kiddies. Get a life.
FYI
Consider your passwords disclosed.
The attacker probably has a copy of password hashes and with a bit of effort can result in cracking of your password.
Change your passwords elsewhere!
Luckily for me, I use a different password on everysite. Keep in mind, even if they don't crack the PW, they can still use it so - CHANGE YOUR PASSWORDS.