Someone forwarded a spammer's email to Spamnesty, which replied to the email, pretending to be a person called Allen Clark and starting a conversation.
This is that conversation.
Προσφορές Ρολλά Ασφαλείας Καταστημάτων - Γκαραζόπορτες
/Σε περίπτωση οπου δεν το βλέπετε View it in your browser
<http://www.dmenounos.net/newsletter/index.htm>/
Μάιος 2018
<http://www.dmenounos.net/newsletter/relink13.htm
<http://www.dmenounos.net/newsletter/relink14.htm
Εταιρική Παρουσίαση - Κάντε κλίκ εδω
<http://www.dmenounos.net/newsletter/relink13.htm>
ΒΙΟΜΗΧΑΝΙΚΕΣ ΠΟΡΤΕΣ
------------------------------------------------------------------------
ΡΟΛΛΑ ΑΣΦΑΛΕΙΑΣ
------------------------------------------------------------------------
ΓΚΑΡΑΖΟΠΟΡΤΕΣ
• ΑΣΦΑΛΕΙΑ • ΠΟΙΟΤΗΤΑ • ΑΙΣΘΗΤΙΚΗ
------------------------------------------------------------------------
Σχεδιασμός , Παραγωγή & Τεχνική Υποστήριξη απο το 1970
Ρολλό Ασφαλείας Λαμαρίνα
για Καταστήματα ή Γκαραζόπορτα
<http://www.dmenounos.net/newsletter/relink13.htm>
Ρολλό ασφαλείας καταστήματος ή γκαραζόπορτα από προφίλ L110
γαλβανισμένης λαμαρίνας επίπεδης διατομής.
Πάχος υλικού 0,8mm διαστάσεων 2,50 cm Χ 3,00 cm.
*Στην προσφορά συμπεριλαμβάνονται τα παρακάτω:*
• Προφίλ λαμαρίνα L110.
• Άξονας Φ60 με σπειροειδή ελατήρια.
• Οδηγοί κύλισης βάθος 7cm με λάστιχο PVC και βουρτσάκι
• Ηλεκτροκινητήρας κεντρικός Pujol ανυψωτική ικανότητα 170kg.
• Σύστημα τηλεχειρισμού με 2 χειριστήρια κυλιόμενου κωδικού.
• Σύστημα αποσυμπλέξεις σε περίπτωση διακοπής ρεύματος Ηλεκτροστατική
βαφή σε χρώμα Ral classic της επιλογής σας.
• Κλειδαριές ζευγάρι για περισσότερη ασφάλεια.
• Εγγύηση 3 ετών.
*Κόστος: 545,00€ + ΦΠΑ*
Σημείωση: Στην παραπάνω τιμή δεν περιλαμβάνει μεταφορά και εργασίες
τοποθέτησης κατόπιν συννενόησης.
<mailto:[email protected]
Ρολλό Ασφαλείας
Διάτρητο για Καταστήματα
Ρολλό ασφαλείας καταστήματος από προφίλ L110D διάτρητης γαλβανισμένης
λαμαρίνας επίπεδης διατομής. Πάχος υλικού 0,8mm διαστάσεων 2,50 cm Χ
3,00 cm.
*Στην προσφορά συμπεριλαμβάνονται τα παρακάτω:*
• Προφίλ λαμαρίνα L110D.
• Άξονας Φ60 με σπειροειδή ελατήρια.
• Οδηγοί κύλισης βάθος 7cm με λάστιχο PVC και βουρτσάκι.
• Ηλεκτροκινητήρας κεντρικός pujol ανυψωτική ικανότητα 170kg.
• Σύστημα τηλεχειρισμού με 2 χειριστήρια κυλιόμενου κωδικού.
• Σύστημα αποσυμπλέξεις σε περίπτωση διακοπής ρεύματος.
• Ηλεκτροστατική βαφή σε χρώμα Ral classic της επιλογής σας.
• Κλειδαριές ζευγάρι για περισσότερη ασφάλεια.
• Εγγύηση 3 ετών.
*Κόστος: 595,00€ + ΦΠΑ*
Σημείωση: Στην παραπάνω τιμή δεν περιλαμβάνει μεταφορά και εργασίες
τοποθέτησης κατόπιν συννενόησης.
<mailto:[email protected]
<http://www.dmenounos.net/newsletter/relink13.htm
Ρολλό Δικτυωτό Ασφαλείας
για Καταστήματα
<http://www.dmenounos.net/newsletter/relink13.htm>
Ρολλό ασφαλείας καταστήματος από βέργες γαλβανισμένου σιδηρού Φ8mm
κυκλικής διατομής, οι οποίες αφού διαμορφωθούν σε πρέσα ενώνονται μεταξύ
τους με ισχυρούς συνδέσμους διαστάσεων
2,50 cm Χ 3,00 cm.
*Στην προσφορά συμπεριλαμβάνονται τα παρακάτω:*
• Δικτυωτό Μεγάλο μάτι.
• Άξονας Φ60 με σπειροειδή ελατήρια.
• Οδηγοί κύλισης βάθος 7cm με λάστιχο PVC και βουρτσάκι.
• Ηλεκτροκινητήρας κεντρικός pujol ανυψωτική ικανότητα 170kg.
• Σύστημα τηλεχειρισμού με 2 χειριστήρια κυλιόμενου κωδικού.
• Σύστημα αποσυμπλέξεις σε περίπτωση διακοπής ρεύματος.
• Ηλεκτροστατική βαφή σε χρώμα Ral classic της επιλογής σας.
• Κλειδαριές ζευγάρι για περισσότερη ασφάλεια.
• Εγγύηση 3 ετών.
*Κόστος: 545,00€ + ΦΠΑ*
Σημείωση: Στην παραπάνω τιμή δεν περιλαμβάνει μεταφορά και εργασίες
τοποθέτησης κατόπιν συννενόησης.
<mailto:[email protected]
Θα μας βρείτε: <http://www.dmenounos.net/newsletter/relink15.htm
<http://www.dmenounos.net/newsletter/relink16.htm
*ΒΙΟΜΗΧΑΝΙΚΕΣ ΠΟΡΤΕΣ - ΡΟΛΛΑ ΑΣΦΑΛΕΙΑΣ - ΓΚΑΡΑΖΟΠΟΡΤΕΣ*
ΕΡΓΟΣΤΑΣΙΟ - ΛΕΩΦΟΡΟΣ ΚΗΦΙΣΟΥ 54 ΑΘΗΝΑ
Τηλ.: 210 3217 503 - Κιν. Τηλ.: 6944 501 303 - 6942 073 634
www . dmenounos . gr <http://www.dmenounos.net/newsletter/relink13.htm
- [email protected] <mailto:[email protected]
------------------------------------------------------------------------
Hi,
Great, thanks. Could we have a short call to discuss the specifics? What are your contact details? Also, what is your pricing model like?
Allen Clark
CEO, MNesty, LLC
FROM UPS COURIER COMPANY BENIN REPUBLIC, PORTO-NOVO Branch: Head Office: 270 Ozumba Mbadiwe Avenue Akpapka, Porto-Novo: Director, Swift Atm Visa Card / Telex Dept. Our Ref:ICB /Republic Of Benin /998/16
Office Phone:(+229)99338054
Email: [email protected]
Your ATM Visa Card Was Discovered In my Office.
May 9, 2018
Attention:Customer.
Greetings,
I'm Dr; Emeka Ezela, the new appointed Manager of ups courierservice Office at Porto novo Benin Republic. I assumed this office on 24th, April 2018. On going through the files of the previous records of this office, I discovered that there are 12 parcels containing ATM
cards each one attached with an email address of the owner on it. The former appointee of this office (Mr.Pal Kim) failed to carry out the delivery as it was instructed and programmed. Probably, one of his reasons for not carrying out the delivery was because of your Non-Compliance of Official Processes and Unbelief of the Reality of Your Genuine Visa
Card.
According to the content recorded in each file, the ATM card was deposited by Mr Mathew Peterson who died 6 months back as a manager of Bank for Africa. On the statement he wrote on the list, he stated that each of the aforementioned ATM cards contains the sum of US$150,00 and was supposed to transfer to you through his bank but due to your unable to finish the process he uploaded the money to their ATM Visa card and registered with ups office before he died.
Meanwhile, I've made the arrangement of posting the 12 parcels through our ups fast delivery to the 12 of you to your respective mailing addresses.
Am also sending the same message of the same content to 12 of you that own the 12 abandoned ATM CARDS each at the same time. If found in spam folder, it could be due to your Internet Service Provider, ISP. So move to your inbox before your reply.
I went to our head office at Cotonou Benin and reported the issue of the discovered 12 ATM cards in my office and they verified it and gave me the veto order to carry out the delivery immediately you reconfirm your mailing address to this office in order for us to mail the ATM CARD directly to you. Note, below information is officially needed for the sending of the card through for ups courierservice new official stamp.
Full name:
Full mailing info:
Your cell phone line:
Country:
A Copy of your I.D:
I will send your ATM Card once you update us with the above info and you shall be given a tracking number, that is, the Track and Trace number of your parcel once it is posted to your mailing address, so as to enable you track your parcel to know exactly when it will arrive to your mailing address.
Remain blessed as I'll be looking forward to receiving your immediate response.
Hey there,
Could you tell me where you are located? Also, could you tell me more about your offer?
Allen Clark
CEO, MNesty, LLC
FROM DHL COURIER COMPANY BENIN REPUBLIC, PORTO-NOVOBranch:Head Office: 270 Ozumba Mbadiwe Avenue Akpapka,Porto-Novo: Director, Swift Atm Visa Card / Telex Dept.Our Ref:ICB /Republic Of Benin /998/16
Your ATM Visa Card Was Discovered In my Office.
May 10, 2018
Attention:Allen Clark
CEO, MNesty, LLC.
Greetings,
I located in my office address as stated above.Furthermore,in send your required information as requested below for reconfirmation of your information.
Full name:
Full mailing info:
Your cell phone line:
Country:
A Copy of your I.D.
Remain blessed as I'll be looking forward to receiving your immediate response.
FROM DHL COURIER COMPANY BENIN REPUBLIC, PORTO-NOVOBranch:Head Office: 270 Ozumba Mbadiwe Avenue Akpapka,Porto-Novo: Director, Swift Atm Visa Card / Telex Dept.Our Ref:ICB /Republic Of Benin /998/16
Your ATM Visa Card Was Discovered In my Office.
May 10, 2018
Attention:Allen Clark
CEO, MNesty, LLC.
Greetings,
I located in my office address as stated above.Furthermore,in send your required information as requested below for reconfirmation of your information.
Full name:
Full mailing info:
Your cell phone line:
Country:
A Copy of your I.D.
Remain blessed as I'll be looking forward to receiving your immediate response.
Hello,
Can you give me some more info about what you're offering? Specifically, how does it apply to our business? How can we use this?
Allen Clark
CEO, MNesty, LLC
Gentleman,please go back to the previous message i sent you.You can get everything you want if you can read it carefully.
Hello,
That is reasonable, but do you think you can go into more detail about your main product? What is it about, exactly? Does it resemble https://photricity.com/flw/ajax/?
Allen Clark
CEO, MNesty, LLC
Are you ready to receive your card Mr.Allen? Let me know asap.
Hello,
Thank you for your email! However, I don't know if this will fit in our budget. Is there anything better you could do?
Allen Clark
CEO, MNesty, LLC
Please send your information as requested.I am waiting urgently.
Hello,
that sounds impressive! I am excited to hear more about your company. Can you help me with some references, completed projects, partners, etc.?
Allen Clark
CEO, MNesty, LLC
Small Business Financing, we want to help your business GROW. Fast,
Easy, Simple
obtain WORKING CAPITAL
-"Don't worry about failure; you only have to be right once."
-_Drew Houston_
for your BUSINESS
-"The most successful people are the ones who learn from their
mistakes and turn their failures into opportunities" -_Zig Ziglar_
in as few as 72 HRs
-"I'm a big fan of small business ownership. I think it's the
backbone of American innovation. But to be successful, you first have
to have the courage to go for it." -_Bill Rancic_
up to $500,000
-"Good business leaders create a vision, articulate the vision,
passionately own the vision, and relentlessly drive it to completion."
-_Jack Welch_
Apply Here
http://newsletters.merchantsourceinc.com/index.php/campaigns/ns798l71kof37/track-url/lf977kf6em716/99455290ef9668c7e93c43ae9bc33b1f66567f89
-"A small business is an amazing way to serve and leave an impact
on the world you live in." -_Nicole Snow_
(877) 343-3008
-"Ambition is the path to success. Persistence is the vehicle you
arrive in." -_Bill Bradley_
"My best advice to entrepreneurs is this: forget about making
mistakes, just do it. - Ajaero Tony Martins"
With over 10 years of service in the industry, our funding experts
are working day-and-night to get your business the funding it needs in
as little time as possible. Get the WORKING CAPITAL your business
need!!!
Merchant Source Inc.
www.merchantsourceinc.com
http://newsletters.merchantsourceinc.com/index.php/campaigns/ns798l71kof37/track-url/lf977kf6em716/c3d73242ee62ea204002d43acea724afa9d17da8
110 Jericho Tpke, Floral Park, NY 11001
(877) 343-3008
Unsubscribe
http://newsletters.merchantsourceinc.com/index.php/lists/jc6749fvt00a0/unsubscribe/lf977kf6em716/ns798l71kof37
Hello,
That is reasonable, but do you think you can go into more detail about your main product? What is it about, exactly? Does it resemble https://photricity.com/flw/ajax/?
Allen Clark
CEO, MNesty, LLC
Small Business Financing, we want to help your business GROW. Fast,
Easy, Simple
obtain WORKING CAPITAL
-"Follow your passion, not your paycheck.. The money will come
eventually." -_unknown_
for your BUSINESS
-"Great ideas often receive violent opposition from mediocre minds"
-_Albert Einstein_
in as few as 72 HRs
-"Leadership is working with goals and vision; management is
working with objectives." -_Russel Honore_
up to $500,000
-"Theres lots of bad reasons to start a company.But theres only one
good, legitimate reason, and I think you know what it is: Its to
change the world." -_Phil Libin_
Apply Here
http://newsletters.merchantsourceinc.com/index.php/campaigns/xo504yjj2m0bb/track-url/vh96285ojcd65/56b9e12aa98f41a18b65775b44868e5f1bff82b3
-"Always deliver more than expected." -_Larry Page_
(877) 343-3008
-"It is only by going through a volume of work thatyour work will
be as good as your ambitions." -_Ira Glass_
"I knew that if I failed I wouldn't regret that, but I knew the one
thing I might regret is not trying. - Jeff Bezos"
Small businesses require cash flow, Merchant Source can fund your
account in as little as 24-72 hours. Our funding experts are working
day-and-night to get your business the funding it needs in as little
time as possible. Get the WORKING CAPITAL your business need!!!
Merchant Source Inc.
www.merchantsourceinc.com
http://newsletters.merchantsourceinc.com/index.php/campaigns/xo504yjj2m0bb/track-url/vh96285ojcd65/d85b18402d6bf208fe50c78c300895a4448f62a6
110 Jericho Tpke, Floral Park, NY 11001
(877) 343-3008
Unsubscribe
http://newsletters.merchantsourceinc.com/index.php/lists/ef609cm5lnba7/unsubscribe/vh96285ojcd65/xo504yjj2m0bb
Hello,
I am a bit busy now, but I am definitely interested. When can we talk?
Allen Clark
CEO, MNesty, LLC
DR. MATTHEW JOENewport House, Thornaby Pl, Thornaby, Stockton-on-Tees TS17 6SE, United kingdom. Description:
My Name Dr. Matthew Joe, Native of Liverpool. Am working in New York for over {six} months now, but my family isbased in London, I will love to hire a caring male or female manager / housekeeper directly who is willing to work in my house in London as a housekeeper/Manager. I will like you to know that I have 2 daughters 8 and 6 yearsold, I can afford to be paying you £3,500 Great British Pounds Sterling's every four weeks and up keepingmoney every week of £200Great British Pounds Sterling's and this is outside your £3,500 Great British Pounds Sterling's, yourresponsibility in my house is just to take care of the house. Kindly get backto me if you are interested in this offer.
APPLICATION:
Interested applicant can submit his/her CV via email: { [email protected] }. NOTE: Do not apply if you do not haveInternational Passport.
Employment Status: Full time
Type of Remuneration: Salary plus incentives
Job Location: United Kingdom Liverpool
Hello,
Can you give me some more info about what you're offering? Specifically, how does it apply to our business? How can we use this?
Allen Clark
CEO, MNesty, LLC
Where do u stay right now?
what is your age?
Im cool 35 yo Miss born in Ukraine:)
At present I am seeking superb man:)
I can reply to You my picture attached;-)
Write to me at: [email protected])
.
Hello,
Can you give me some more info about what you're offering? Specifically, how does it apply to our business? How can we use this?
Allen Clark
CEO, MNesty, LLC
correct Incomparable;)
What is your age?
May I ask? Where r u live? today Im looking for serviceable guy I'm solitary=
clever 31 years old babe born in Russia
e-mail to [email protected],
I will reply to You my photos,
.
I hope you can chat:) at this moment Im seeking unexcelled guy;) Im fine 36 =
years old Female from Russia:-)
email at [email protected]:-)
I will send You my picture attached:)
.
Hi,
Great, thanks. Could we have a short call to discuss the specifics? What are your contact details? Also, what is your pricing model like?
Allen Clark
CEO, MNesty, LLC
My sir Adroit:) Where are u from? could U please loving tell me! What is yo=
ur age?
at present I'm waiting for shiny guy I am impeccable 35 yo girl born in Ukra=
ine
Email me to [email protected]:)
I will reply to You my picture:-)
good luck!
.
Hello,
I am a bit busy now, but I am definitely interested. When can we talk?
Allen Clark
CEO, MNesty, LLC
absolute my Crack.
what's your age? all lovely
I wish to small talk;)
Where are You live? righ now I am looking for savoury male
I'm intelligent 35 y.o. babe staying in Ukraine. My e-mail for contact larnp=
[email protected];-)
I'll reply to You my pictures:)
Thank you anyway
.
Hello,
That is reasonable, but do you think you can go into more detail about your main product? What is it about, exactly? Does it resemble https://photricity.com/flw/ajax/?
Allen Clark
CEO, MNesty, LLC
My mister Only.
May You're free to mute speak!
what is your age? Where are U from? At this moment I am waiting for successf=
ul dude
I'm solitary groovy 35 y.o. chick in Ukraine;-)
email me to [email protected];) I'm going to send You my pictures
.
Buon giorno My bold)
what's your age?
Where are U stay now?
Presently I am looking for curvy gentleman! I am goodygoody 35 y.o. miss bor=
n in Ukraine;-) Reply to [email protected];-)
I'll reply to You my photo attached, Thank you in advance
.
Hi,
Sounds great, how can we proceed? We're interested in getting started pretty much immediately, as we could use this.
Allen Clark
CEO, MNesty, LLC
hey vivid;)
my sir Auspicious) Where r u stay? what is your age? Presently I'm looking f=
or advantageous not young dude I'm bland 49 years old Female living in Russi=
a. Reply to me: [email protected]
I can reply to You my photo attach!
.
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Allen Clark
CEO, MNesty, LLC
ola my:-) Where are u stay right now?
Let's try to small talk.
What's your age?
For now I am seeking universal male. Im satisfactory 35 yo Mistress living i=
n Ukraine.
I am going to reply to You my photo attach:)
write to: [email protected]:-)
.
Hello,
that sounds impressive! I am excited to hear more about your company. Can you help me with some references, completed projects, partners, etc.?
Allen Clark
CEO, MNesty, LLC
Thanks for your reply towards the immediate release of your daily transfer payment through money Gram We have waited enough in order for you to start receiving your daily transfer payment through, we thought that your no longer interested thank God that you have replied. We have program everything concerned the immediate release of your daily transfer which is $5000.00 per a day. But the only thing still holding the release of the payment information, the authorities are required for the international transfer pemint which is going to cost you $75 USD only. I will be waiting to hear from you regarding the needful fee. Google play card is highly appreciated
ThanksJoe Audu
Hello,
That is very interesting! Could you elaborate? Do you have any details online I could look at?
Allen Clark
CEO, MNesty, LLC
better Mister Tidy,
Bonghjornu my trustworthy. for now Im waiting for champion male:)
I will reply to You my picture)
this is my e-mail for answer: [email protected].
thank you
.
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Allen Clark
CEO, MNesty, LLC
my ineffect mr. irreproachable. Let's talks:) How is it going?
I am lonely wholesome 32 yo Chick from Russian Federation;-)
soon I am looking for joyous male This is E-mail box for answer womanrosse@m=
ail.ru;)
I'm going to send You my photos.
.
Hello,
can you give me an example of this? I would like to know roughly what it looks like.
Allen Clark
CEO, MNesty, LLC
Let's try to chat)
hope you're colossal:-)
I am delicious female.
today Im trying to find cuddly dude;)
I am going to send You my picture.
e-mail at: [email protected]
have a nice day
.
my reliable mister commendable;)
I'm super person born in Germany,
presently I'm seeking delectable dude! I'm going to reply to You my photos:)=
Response me [email protected],
have a nice day
.
Haya my normal. Sir Marshmallow;)
I am unmarried angelic 30 yo woman living in Russian Federation
Soon I am seeking right gentleman,
Email to me [email protected]!
I am going to reply to You my pictures!
have a good day
.
I need to sprightly chat,
I am unmarried perfectible person staying in Germany:)
At present Im look up intellectual male:-)
Response to me at: [email protected]:-)
I will reply to You my photo attached
.
My Snookums;-) do you wish to meet me? Let's try to chat Righ now Im look up=
unequalled buddy;)
I am limpid Babe living in Germany. Write me: [email protected]:)
I am going to reply to You my photo attached:-)
.
bonghjornu!
my ineffect my cupcake)
How so?
Soon Im seeking competent mister:)
I am going to reply to You my photos,
response me at: [email protected].
Have a nice day
.
My Sir unsurpassable:) How are u? I'm thankful 32 y.o. Female living in Russ=
ian Federation;-)
now I'm trying to find ripe buddy from USA;)
I will send You my picture attach:)
This is my Email box [email protected]:)
.
Let's talk)
Im lonely serviceable 32 yo girl from Russian Federation! today I am searchi=
ng for utstanding guy from USA. I will send You my picture attached My e-mai=
l for response [email protected]:)
.
Matey! What's your age?
Where are u from?
can you please do me a favor
Currently Im waiting for intellectual dude;-)
I am able 35 years old Chick born in Ukraine!
I can reply to You my picture attach;)
It's e-mail box [email protected]
.
Hey My beatific! Let's chat,
Presently Im trying to find advisable mister from USA Im corking 32 y.o. fem=
ale,
this is email box for response: [email protected] I am going to =
reply to You my pictures:-)
.
all deluxe?
for now Im waiting for indispensable gentleman from US:)
Im unmarried lively 32 y.o. babe;-)
I am going to reply to You my photo attach;)
This is my email box for response is: [email protected]:-)
have a good time
.
my My goodnatured:)
I hope you can poor talk;-)
Where do u live now?
How old are You? Wish to meet me?
Im unmarried dependable 35 years old person from Ukraine:)
currently I'm seeking straight guy
I am going to send You my pictures) E-mail to: [email protected])
.
Hi Anna,
Sevada asked me to respond to your email regarding Magento support.
To answer your question: I can surely let you know the complete detail about our Magento support plans that start from $299/month. The plans have been used 50+ Magento stores for ongoing support and maintenance for their stores.
Could you let me know the URL of your store so that I can evaluate which plan would work best?
Let me know if you have any questions.
Thanks,Scot(Srikant) SinghConsultant-Magento team, EbizonE [email protected] | W www.ebizontek.comSkype: srikant.ebizon | Whatsapp: 7675869874
------------------------------------------------------------------------------------------Subject: Re: Magento 1x Long Term Support
Date: 2020-10-08 11:43
From: Anna Clark <[email protected]>
To: Sevada Smith <[email protected]>
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Anna Clark
CEO, MNesty, LLC
On 08/10/2020 06:13 AM, Sevada Smith wrote:
Hi ,
I am here to answer this question for your Magento 1 store meetanshi.com.
"How do I stay on Magento1 without any impact to my e-commerce?"
We have perfected fixes on M1 that will allow you to stay on Magento 1 till 2022 without any investment.
Get back to me if you are interested in a free evaluation of your Magento 1 store.
Thanks
Sevada
Senior Magento Consultant
https://mageshield.com/
Vide, My Sir Humane;)
how do you like it today?
Let's one-off speak!
righ now Im looking for capable guy)
I can send You my photo) Email me to: [email protected];)
thank's
.
Hi Anna,
Hope you are doing great.
I am following up on my last email regarding our Magento support plans for your store.
As mentioned earlier, our plans start from $299/month and here is a glimpse of what the plans constitute of:
Can we get on a call and discuss which plan works best for you?
Thanks,Scot
On Fri, Oct 9, 2020 at 8:09 PM Scot S <[email protected]> wrote:
Hi Anna,
Sevada asked me to respond to your email regarding Magento support.
To answer your question: I can surely let you know the complete detail about our Magento support plans that start from $299/month. The plans have been used 50+ Magento stores for ongoing support and maintenance for their stores.
Could you let me know the URL of your store so that I can evaluate which plan would work best?
Let me know if you have any questions.
Thanks,Scot(Srikant) SinghConsultant-Magento team, EbizonE [email protected] | W www.ebizontek.comSkype: srikant.ebizon | Whatsapp: 7675869874
------------------------------------------------------------------------------------------Subject: Re: Magento 1x Long Term Support
Date: 2020-10-08 11:43
From: Anna Clark <[email protected]>
To: Sevada Smith <[email protected]>
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Anna Clark
CEO, MNesty, LLC
On 08/10/2020 06:13 AM, Sevada Smith wrote:
Hi ,
I am here to answer this question for your Magento 1 store meetanshi.com.
"How do I stay on Magento1 without any impact to my e-commerce?"
We have perfected fixes on M1 that will allow you to stay on Magento 1 till 2022 without any investment.
Get back to me if you are interested in a free evaluation of your Magento 1 store.
Thanks
Sevada
Senior Magento Consultant
https://mageshield.com/
--
Thanks,Scot(Srikant) SinghAssociate Consultant, EbizonE [email protected] | W www.ebizontek.comSkype: srikant.ebizon | Whatsapp: 7675869874
my unequaled Mister dear!
May be U are free to top-quality speak) What is your age? how is going? Wher=
e are U now?
Im lonely careful 28 years old woman in Ukraine;)
Today I am looking for peerless male!
I am going to send You my photo, Reply me at [email protected])
Thank you in advance
.
My limpid my clever:-)
could You do me a favor?
I hope U can accomplish small talk:-) Where are You stay?
How old are You?
I'm unmarried real 28 y.o. girl from Ukraine,
Immediately I'm look up loving mister;) it's E-mail box is: bannermanabrahan=
[email protected];-)
I can send You my photo attached:)
.
My Ideal! Where do U stay now? I want to tender small talk:)
Can U please itchy tell me?
how old are you?
Now I'm waiting for class buddy!
I'm lonely capable 28 years old Girlfiend from Ukraine
I will send You my photo! Reply me: [email protected]
Have a nice day
.
How old are You?
Where r You from? Immediately Im trying to find colossal male;-) I am alone =
attractive 28 y.o. Girlfiend staying in Ukraine!
reply me to: [email protected])
I will send You my picture attach,
Thank you in advance
.
is all able? Today I'm trying to find chief buddy:-) Response to me at ae440=
[email protected] I am going to send You my picture attached Have a nice day
.
Hi My respectable:-)
is it substantial? How old are You? Where do u live now? For now I am search=
ing for angelical guy!
I'm nonsuch girlfiend in Ukraine;-)
this is my email for answer is: [email protected]. I'm going to send You =
my picture:-)
Thank you
.
How old are You?
Where r u from?
May you please do me a favor?
I'm advisable 28 y.o. lady staying in Ukraine,
at present Im searching for special man! e-mail me to kendrickstweddell078@g=
mail.com;-)
I will send You my picture attached! Thank you in advance
.
Guten Tag My:) inimitable my Darling;)
Could you do me a favor?
Now Im searching for nonsuch buddy, Response me at: [email protected];=
)
I'm going to reply to You my photos.
have a nice day
.
hai My moral:-) I hope U can wilted chat!
how're you? Im alone interest chick.
at this moment Im searching for thoughtful male,
this is my email box for reply is: [email protected]:-)
I'll send You my picture) good bye
.
hai My,
What's your age?
Where do u stay now?
I hope u can prime speak:-) Everything enjoyable,
I'm solitary reputable Girl born in Ukraine.
Soon I am waiting for valuable mister it's my email box for response is: siq=
[email protected]
I am going to reply to You my photo attach,
.
Bona jorno!
I hope You can speak:-)
now Im look up limpid gentleman;) Im single precious Babe born in EU!
I'm going to send You my picture attached:)
Email me to: [email protected]
Have a nice time
.
my hot.
I want to small talk;-)
Do U want to know me?
How old are You?
Where are u live now? I am corking Babe staying in Ukraine,
today I'm trying to find righteous guy:-) I am going to send You my picture =
attached)
Email to: [email protected]:)
thank you anyway
.
my Sir admirable.
now I am trying to find unequalled dude;)
I am lonely indispensable Female living in EU
I'm going to send You my picture attached;-)
reply to me: [email protected];) thank's
.
my super Mister Wholesome,
Where are u live?
how old are you?
Let's try to speak,
how're u?
I'm lonely generous mistress born in Ukraine.
Presently Im waiting for thankful gentleman:)
it's my e-mail [email protected]! I am going to reply to You my picture atta=
ch,
Have a good day
.
May u speak with me)
Now I'm trying to find pricey mister)
I am thankful miss born in EU.
I can send You my picture attach, Response me to: [email protected]:-)
Good bye
.
Welcome;)
How are you doing?Let's get acquainted:-)
I am Antonina;-)
I am very happy to meet you)
I hope you find this post interesting.
I will write you more about myself in my next letters:)
I look forward to your reply,
I will also send you my photos;-)Email me at: [email protected];) talk t=
o you later
.
At this moment I'm waiting for goodly buddy;-) Im useful Woman:-) I will rep=
ly to You my picture attach;)
email box for reply: [email protected];)
Thank you in advance
.
May you please outwit answer me?
I am unmarried generous Female;) Today I am seeking amazing male;-)
E-mail to me: [email protected];) I am going to send You my photo attac=
h)
Thank you
.
Where r You live? What's your age?
Soon I am looking for moral dude,
I'm alone intelligent lady in Ukraine,
I'll send You my photo attached;)
E-mail to me at [email protected])
thank's
.
My kind sir Tasty:)
Hej my amazing;-)
Can you usefulness speak? I need to slow small talk;-) I am fine Person;-)
presently Im trying to find neat mister:-) This is e-mail box is: leonardopi=
[email protected]! I can reply to You my photo attach:-) have a good time
.
Invite, I wish to chat:)
Soon I'm seeking suitable man:)
I am alone priceless girlfiend born in Europe;)
I can send You my picture attached
this is my email for contact [email protected]
.
I'm reliable girl living in EU, Righ now I am waiting for unequaled gentlema=
n;-)
I can send You my picture,
it's Email box for reply: [email protected];-)
thank you in advance
.
My Inimitable;-) can you please answer:-)
Currently I'm searching for praiseworthy man.
e-mail me at: [email protected]) I will send You my photo attach
have a nice day
.
I am alone notbad Chick:-)
presently Im looking for top-grade buddy:-) I'll send You my photos;) This i=
s E-mail for contact is: [email protected]:) Thank you
.
my Mr. benign:-)
bona jorno,
How do you like it there? For now Im waiting for successful mister)
My E-mail for answer is: [email protected])
I am going to send You my photo attach! Have a nice day
.
my bright mr. Soundly.
what're U up to?
presently I'm looking for nice mister
I'm sweet lady! I will send You my pictures!
write me to: [email protected]) Have a nice time
.
I hope you can chat, Im solitary special woman in EU;) At this moment I'm lo=
ok up notbad male.
email to me at [email protected];-) I'm going to reply to You my pictu=
re;-) thank you
.
My My Super;-)
bonghjornu My no.1 I hope you are free to talks:-)
can u gray speak with me
Im lonely ripe Mistress born in EU:)
presently I'm look up desirable gentleman! I'm going to send You my picture;=
) Write me to: [email protected]!
.
bona jorno my!
Could u small talk with me;-) I am holy Lady)
at this moment I'm looking for comfortable male!
I'll reply to You my picture attached;-) reply me to: dorianhebblethwaite@gm=
ail.com.
Thank you anyway
.
Let's try to talks:-)
righ now I'm seeking angelic buddy;-) Email to: [email protected]=
m
I'll send You my picture;) thank you in advance
.
Saluto my
I hope you can charming talk;) how is it going?
currently I am looking for crisp male) I'm immaculate Babe in Europe)
I'll reply to You my photo attach;)
my email box for contact: [email protected].
.
inviting joyous:) my My universal:)
are You OK?
At present I'm waiting for unparalleled buddy
I am alone clever girlfiend,
This is e-mail box for contact [email protected], I'm going to r=
eply to You my picture attach;-)
Thank's
.
I hope you can lazy chat)
what is your age?
Where are U stay now?
How is it going?
I am cuddly chick in Ukraine:-)
immediately Im waiting for holy dude! My Email box for answer is: midgeqfk@g=
mx.com.
I am going to reply to You my photo attach. have a nice day
.
Ola My righteous! My hot Bang-up! can I ask?
I hope You're free to alert talks)
I am bouncy person Presently I am look up straight male;) this is my Email f=
or contact: [email protected];) I'm going to send You my photo att=
ached,
have a nice time
.
what is your age?
I want to talk) Where r You from?
I am single valuable Person living in Ukraine. at this moment I'm look up si=
ngle mister)
I am going to send You my pictures)
response to [email protected]:-)
.
Mr. Noble;)
Bon dia my thankful;) Let's try to small talk;-)
May we chat. Currently I'm seeking clean guy;-) Im unequaled Female)
This is Email for answer [email protected]:) I'm going to send You my =
pictures Have a nice day
.
salutation!
my My Bland;-)
what r You feeling?
I am single clean girlfiend:-)
Immediately Im look up invaluable mister;-) I can reply to You my photo atta=
ched;-)
This is E-mail for reply: [email protected]. thank's
.
Let's shaggy chat, how do You like it there? now Im waiting for charming mal=
e:)
it's my e-mail for answer [email protected];) I am going to send You m=
y photo;)
Thank's
.
I wish to used small talk,
Wish to meet me?
Soon I'm trying to find true guy) I'm going to reply to You my picture attac=
hed:) It's email box for reply is: [email protected];)
have a good day
.
My Nonsuch.
Im just Lady;)
for now Im looking for impeccable mister;-)
I'll reply to You my pictures)
write at [email protected].
talk to you later
.
Shalom my brave. My nonpareil my perfect.
I need to crunchy talk;)
Im worthy Mistress;)
Righ now Im looking for remarkable guy. I'll send You my photos;) E-mail me =
at: [email protected]
thank's
.
Salute:)
My inimitable:)
What's your age? Where are U live now?
I want to regular talk;)
Im unstained Lady living in Ukraine at this moment I am seeking appetizing m=
ister:-)
it's my E-mail box for answer is [email protected]
I will reply to You my picture attach!
.
Bon dia My juicy. My mr. Astounding.
How is it going?
I'm sumptuous chick) Now I'm searching for right mister,
Email me [email protected])
I'm going to send You my photo)
have a nice time
.
I hope U can small talk;-) I am unmarried top-grade Babe;-)
currently I am trying to find unspoiled male:-)
I'll send You my photo,
e-mail at: [email protected]:)
thank you anyway
.
I'm solitary crack Miss:)
currently I'm seeking oneandonly mister;-)
response to me at [email protected]:)
I will send You my picture attached:-)
Thank you in advance
.
greet my sumptuous, Where r u live now?
How old are You?
Currently I am searching for bouncy male;-)
I'm unmarried tasty Mistress staying in Germany.
Response to me at [email protected];)
I'm going to reply to You my photo:)
.
top-quality My unspoiled:-)
What is your age? Where do You live right now?
I hope U can chat. I am solitary holy person born in Germany;-)
Now Im look up goodhearted mister,
I'll send You my photo attached:-)
My email box [email protected]:-)
.
wish to see me?
Let's bite-sized speak!
immediately Im searching for supreme buddy!
E-mail to me at [email protected]!
I'm going to send You my photo. good luck!
.
mr. Honey Bear;-)
Bonzur My)
how old are you?
Let's prizewinning talks!
how is it going?
Where are You right now? immediately Im look up natural mister;-)
I'm alone true Girlfiend born in Germany;) I can reply to You my picture
this is E-mail box for reply [email protected]:-)
Thank you anyway
.
my select My Classic)
Where do u stay right now? How do you like it there?
what is your age?
I'm lonely correct babe born in Germany!
at present I am look up single mister! This is Email box for response is: af=
[email protected],
I'm going to send You my picture.
.
my Mister Sugar:) Where are u stay?
I wish to chat, How old are You?
Im curious girl from Germany At present I am trying to find warm dude;) I am=
going to send You my photo attached:)
it's email box: [email protected].
.
Where are u now? what's your age? Im solitary no.1 Female born in Germany;-)=
Soon I'm trying to find inimitable gentleman! I'm going to send You my pict=
ures!
E-mail for response is: [email protected]
thank you in advance
.
Ciao My invaluable;-) wholesome Snookums,
Where are U stay?
what's your age?
I'm savory girl from Germany. righ now I am trying to find generous gentlema=
n;)
E-mail at: [email protected],
I am going to send You my picture attach:)
.
Where r You from?
How old are You? immediately I'm trying to find valid dude)
I'm serviceable Chick born in Germany;) I am going to send You my photo,
e-mail to me at: [email protected].
.
my gentle Truthful)
Let's first-rate speak:) can you do me a favor?
how old are you?
Where do u now? At present I am looking for creditable mister)
I am alone smart Miss living in Germany:-)
email for answer is [email protected]:) I'll reply to You my pictures.
have a nice day
.
Let's suitable speak:-) Where do You stay now?
what is your age?
Presently I'm seeking astonishing mister.
I'm alone normal female from Germany!
I'm going to send You my picture attach)
This is email for response [email protected];)
.
mister gentle.
Where are You right now?
I wish to victorious talk;) what is your age?
Im uncomparable woman living in Germany, at this moment I'm seeking right mi=
ster;) I can reply to You my pictures;-)
response to me at: [email protected]) have a nice time
.
righ now Im look up ordinary mister from United States
I am unmarried scrumptious lady:) Email box is: [email protected]) I can=
reply to You my photo!
.
My savory mr. reputable!
may we virgin small talk? I'm unique Woman:) At present Im seeking nice mal=
e from United States! Write to [email protected]) I am going to send Y=
ou my photo attached:)
Bye
.
could you please gracious talk? What's your age?
Let's stark talk:)
Where are U from?
I am stylish girl in Germany)
presently Im look up soundly dude;-) I'm going to send You my picture attach=
It's my E-mail box for answer is [email protected], Thank you in advanc=
e
.
Let's try to small talk:)
What're U up to? Righ now Im searching for truthful dude. It's my email box =
for reply is [email protected];)
I can send You my photo)
Good luck!
.
Bona jorno my;-)
Let's inquisitive small talk Can u chat?
at this moment I'm seeking indispensable mister;) I am true person. email bo=
x is: [email protected]:)
I'll reply to You my picture!
Good luck!
.
I'm beatific woman in Europe:-) currently I'm seeking suitable guy:)
It's E-mail for answer: [email protected], I will send You my photos,
Good bye
.
my angelical mr. enjoyable.
I need to speak;-)
Im unequalled Woman living in Europe
soon I am waiting for auspicious gentleman)
I'll send You my picture attach;-)
Write me at [email protected]
.
Good Morning My;) notbad Mister savoury! I wish to onetime speak
Currently I'm seeking beautiful mister;-) I'm tender chick,
I can reply to You my pictures! Email to: [email protected]) Good=
luck!
.
my Sir honey!
good Day My!
righ now I am look up warm man;) my E-mail for contact is campbellscarface78=
@gmail.com;-)
I can reply to You my picture.
Thank you anyway
.
My normal Ordinary.
Im single courageous lady:-)
now I am trying to find magnificent buddy)
E-mail to me at [email protected]:-) I'm going to send You my pictu=
re attached;-) good luck!
.
My unspoilt Sir wholesome. at present Im look up interesting man Im smashing=
woman staying in Europe
I am going to reply to You my picture;)
email me at: [email protected]:-)
have a nice time
.
Invite my,
I want to exclusive chat:-) Immediately I'm waiting for kind buddy:)
I am open girl:)
it's e-mail for contact is [email protected])
I am going to send You my picture attach:)
Thank's
.
My Sir sweety.
may we lovely small talk?
I hope U are able to speak:) for now I am looking for well-disposed male, Im=
benevolent Miss:-) this is my E-mail for contact is: svetik.love325@outlook=
com;-)
I will send You my photo attach,
thank you anyway
.
Helele my unique:) better mr. Top-quality:-)
I need to speak
Immediately Im trying to find modern dude:-) I'm appetising Lady:)
Write to me at [email protected]!
I'll send You my picture:) have a good time
.
Bonjou,
could I ask a question:)
Let's hard-to-find speak At present Im searching for clever male, I'm wonder=
ful chick,
I will reply to You my pictures,
It's my Email for contact [email protected]:-)
Thank you in advance
.
Mr. well,
I hope U can isolated small talk;) today Im looking for dependable guy.
I am charming Miss:)
I'm going to send You my picture this is my Email box svet.kitty236@outlook.=
com:-)
Thank you
.
Mister untarnished;-)
Ola my;) I hope You can small talk:)
hope You r sprightly! For now I am waiting for corking mister;-)
I'm clever Miss staying in EU)
I'll reply to You my pictures;)
response me at [email protected]:-)
.
mister beloved,
Can I ask you?
I'm chic woman
at this moment I'm trying to find original mister
I'll send You my picture attach:-)
write me at: [email protected]) Have a nice day
.
unspoiled Mister worthy:)
May you are free to speak! How was it?
Righ now I'm look up juicy gentleman:-)
My E-mail for response is: [email protected]:-) I will send Yo=
u my picture attach;-) Have a nice time
.
Righ now Im looking for top dude:-)
I am scrumptious Mistress living in EU:-) Response me: harrandcarling45@gmai=
l.com,
I'm going to send You my photo attach
bye
.
Hei my original
Is all soundly)
I'm alone correct Chick born in Europe) at this moment Im searching for amaz=
ing buddy;-)
reply me [email protected] I'm going to reply to You my picture att=
ach:-)
thank you
.
ciao My;)
can You witty tell me? I wish to chat:-) I'm incomparable girl, today I am =
waiting for untarnished male:-)
This is E-mail for reply: [email protected])
I'm going to send You my picture attached)
have a nice time
.
my Mr. Goodnatured)
Opa My)
now Im look up nonpareil guy) it's my Email box for reply [email protected]=
om,
I will reply to You my photos:-) Have a nice day
.
hi bouncy.
My delectable Sir thankful! hope You're able;-)
what is your age? Where r U now?
At present I am trying to find brave man)
I am charming Chick born in Germany;-)
My e-mail for response [email protected];-)
I will reply to You my photo attached)
.
Aloha My:-) for now Im searching for capable male:-) I'm unmarried splendid =
Woman;)
I'll send You my photo attach,
Email to me: [email protected],
Till next time
.
my My Limpid how is it going?
I need to talk.
at present Im seeking choice mister.
response to me at: [email protected].
I am going to reply to You my photo attach)
good bye
.
May be you're free to talk.
Righ now Im waiting for holy male:-)
I'm alone top-grade babe) this is e-mail box for contact is augiemounteer1@g=
mail.com.
I am going to send You my photo attached;-)
Have a good time
.
today I am seeking supreme guy:-)
my email box [email protected]
I will reply to You my photos;)
thank you anyway
.
opa my polite:-)
How is it going? Today Im looking for tasty guy:) Response to: legrandh08@gm=
ail.com)
I can reply to You my photo attached;)
talk to you later
.
Hai commendable) my kind mr. Well:)
I hope u are able to unwieldy talks
I am single interest babe,
at present Im looking for desirable gentleman. I am going to send You my pic=
tures.
response to me at: [email protected]!
have a good time
.
Helele my nonsuch!
what is your age? Where are You live now? I am alone warm Miss living in Ger=
many Righ now Im waiting for goodhearted gentleman;)
e-mail to me at [email protected]:) I'll reply to You my pictures!
Thank you anyway
.
May You're able to talks
May we profit talk? Today Im waiting for indispensable mister;)
I am superb Girl living in EU:-)
This is my Email box for contact is [email protected]
I will send You my photo attach)
Have a nice time
.
For now Im searching for courageous gentleman. I am unmarried great girlfien=
d living in Europe)
I'll reply to You my picture attached
E-mail me at [email protected];)
Have a nice day
.
brainy Mister Opportune;)
Haya;-)
Are You around? Let's talks:-)
Im lonely peerless lady born in EU,
At present I am seeking crisp gentleman response at [email protected]:=
-) I will reply to You my photos)
thank you in advance
.
My Mr. Untarnished;)
Presently Im searching for super guy I am single incomparable Woman living i=
n EU;)
I'll reply to You my picture attached:)
this is email box is [email protected];)
talk to you later
.
hola nice. can u please chat with me;-) Let's perfection small talk;-)
I am thoughtful person staying in EU! At this moment I am trying to find cle=
ver guy:)
it's e-mail for reply is [email protected])
I will send You my photo attached)
have a nice day
.
Greeting My pleasing,
My notbad my courageous,
Where r U now? How old are You? Wish to meet me?
I hope u can speak;-)
righ now Im look up clear not young male,
I'm angelical 32 y.o. Girlfiend! It's email box for contact is: wordebdizu@g=
mx.us.
I will reply to You my picture attached;)
.
Mister Kind.
what is your age? Where are You live now?
Im tender 32 yo chick! Now Im look up unspoilt not young guy;) It's e-mail b=
ox for contact is: [email protected]) I am going to reply to You my photo at=
tach!
.
My sir superlative:)
immediately Im looking for shining gentleman)
Im alone creditable girlfiend staying in Russia.
I can send You my photos!
it's my E-mail box for reply: [email protected],
Thank you
.
Bonjorn my attractive;)
my mister Lovely;-)
Let's modern talk what is your age?
Where r u from?
I'm unmarried normal 32 years old lady:) Presently Im waiting for suitable n=
ot young guy:-)
My e-mail box is [email protected]:) I can reply to You my picture.
.
hallo;-) My mister Incomparable;) Where do You live right now? How old are Y=
ou?
I'm alive 32 yo Person,
Immediately I'm look up ineffect not young mister.
it's email: [email protected];) I can send You my photo attach:-)
.
Where are u from?
How old are You?
I am lonely righteous 32 y.o. girlfiend! righ now I am seeking remarkable no=
t young man
I can send You my picture attach;)
it's my E-mail box for reply: [email protected]
.
sir Astounding,
Could you do me a favor?
Where are U from?
what's your age? Im lonely serviceable 32 yo girl:)
At present I am waiting for unparalleled not young dude
I'm going to reply to You my picture E-mail to me [email protected],
.
What's your age?
Where are You live?
Im lonely adventurous 32 years old female
Today I am trying to find able not young buddy, This is email for contact is=
[email protected],
I am going to send You my pictures.
.
r You OK? righ now I am look up benevolent mister from US,
What State are U from?
I am solitary delectable Babe)
I can send You my photo attach
E-mail to me at [email protected])
.
Where r You stay?
what is your age?
Im unmarried choice 28 y.o. Girlfiend born in Ukraine)
righ now Im seeking smashing guy;)
e-mail box for answer: [email protected]:-)
I can send You my photo attached:-)
.
Opa my,
Where r U stay now?
What's your age?
at present I'm looking for goodnatured guy;) I'm lonely cheerful 28 years ol=
d woman in Ukraine:-) I am going to reply to You my picture attach!
reply to: [email protected])
.
Bona jorno valid;)
How old are You? Where r u from? Im solitary serviceable 32 yo Mistress
Today I'm seeking cute not young buddy.
I can send You my photo attach:-)
email to me at: [email protected],
.
Where are You from?
what's your age?
I wish to chat,
At this moment I'm searching for amazing man
Im well 28 y.o. Mistress from Ukraine;-)
I can send You my photo;) Email to: [email protected];-)
.
Where r You from? Let's try to speak.
how old are you? I'm unmarried adequate 28 years old Woman from Ukraine:)
presently Im searching for smashing mister:)
it's email box for response is [email protected]
I can send You my photo attach!
bye
.
haya unparalleled;-)
Where do u live?
what's your age?
I am shiny 28 years old Lady in Ukraine;-)
Currently I'm trying to find promising buddy) I'll reply to You my picture;-=
)
This is my E-mail box for response is: [email protected].
.
what's your age? Where are You from?
I'm generous 32 y.o. Mistress) righ now I'm look up wholesome not young male=
! I'll reply to You my photos;) Response at: [email protected],
.
My Worthy Buon giorno sumptuous) can I ask u a question? now I'm waiting for=
tender guy;)
I'm going to send You my photo attach!
response at: [email protected];)
bye
.
Mister Opportune Hei delectable:-) how is it going?
Let's nutty chat:-)
I am savoury Woman:)
For now Im searching for curvy buddy;) I will reply to You my photos!
Reply at [email protected]! Good luck!
.
my bang-up My beautiful;-)
Let's speak;-) At this moment I am waiting for choice male,
Reply to me [email protected]. I will reply to You my picture attac=
hed) Thank you
.
salutation pleasing;)
Where r You stay now?
what's your age?
today Im looking for goodness not young man,
I am solitary remarkable 32 years old person
I will send You my photo:-)
E-mail me to [email protected];-)
.
Salut My
are U there? I'm incredible 36 y.o. Girl from Russia,
presently I'm look up ideal male from USA,
I am going to send You my picture attach
It's Email box for response is [email protected], good bye
.
Greeting my;-)
could I ask u? Im unmarried reliable Lady:) now I'm look up admirable dude I=
'll send You my picture.
e-mail to me [email protected]
bye
.
buon giorno adventurous
Immediately Im waiting for original dude)
Im unequaled Girl:)
email box for answer is [email protected],
I am going to send You my photo!
talk to you later
.
my cuddly mister rreproachable;)
good Evening my beneficial:)
May U do me a favor? Let's talk:-) I am alone unique Lady;)
for now Im seeking fair male
this is my email box for reply: [email protected]! I will reply to Yo=
u my photo attach!
thank you
.
Chao My nice,
could we small talk;)
May be U r free to talks:) Today I'm seeking supreme man;) I am going to rep=
ly to You my pictures) reply me to: [email protected])
have a nice time
.
salut my beneficent!
can you small talk!
soon I am looking for righteous man) response to me [email protected]=
;) I will send You my picture attach
thank's
.
Haya My;-) Let's talks,
Currently I am seeking amazing guy from United States of America;)
What State are u from? I am ideal Lady! Email me to: [email protected]=
m) I can reply to You my pictures:-) Thank you anyway
.
May be You're free to small talk) how old are you?
Where are You now?
I'm solitary bright 28 y.o. mistress in Ukraine Today I am looking for champ=
ion dude;-)
e-mail me [email protected];-)
I'm going to send You my photo attach,
.
May you are free to square talk
I am single absolute lady;-) presently I am looking for ideal guy from Unite=
d States of America What State are You from?
I am going to reply to You my picture attach!
response at [email protected],
.
good Morning My loving,
What's your age? Where r u from?
How do you like it here? at this moment Im looking for able gentleman:-)
I'm unmarried limpid 28 years old Chick living in Ukraine! response me at: b=
[email protected]!
I'll reply to You my photo attach, thank's
.
are you savoury? Where r U from?
Let's try to splendid speak;)
What's your age?
Im best 32 y.o. babe!
presently Im trying to find trustworthy not young gentleman, my email box fo=
r contact [email protected], I am going to reply to You my pictures.
.
my Sir Unsurpassed,
soon I am searching for vigorous gentleman from USA What State are u from?
I'm single serious mistress:)
I will send You my photo attach) e-mail for answer [email protected]:-)=
thank you
.
My Mr. immaculate
saluto My appetizing,
I need to finished small talk:)
At this moment I am searching for pricey buddy from United States)
What State are U from?
I am great Woman:-) I will reply to You my photo attached;-) this is Email f=
or response: [email protected];)
.
can You please tell me?
Let's try to small talk.
I am alone superb Miss
for now I am seeking bold male from US)
What State are You from?
It's my E-mail for response: [email protected]!
I am going to send You my pictures!
Have a nice time
.
my my Curious!
Good Morning my. how is how is your mood? Presently I am trying to find sple=
ndid gentleman.
I am going to reply to You my pictures.
It's email box for answer is [email protected]!
have a nice day
.
my outstanding mr. Sweetie Pie:)
I hope You can small talk.
Can You please do me a favor? Immediately I'm looking for perfect buddy:)
Im bland Mistress:)
I'll send You my photo! Write me [email protected]:)
Thank you
.
my Sir Superman
Let's talk.
Where are U stay now? how old are you?
I'm top 28 y.o. girl staying in Ukraine:-) Today I'm seeking warm guy! reply=
at [email protected].
I'm going to reply to You my pictures
Have a nice day
.
Hey my;-) I need to small talk. Im lonely goodness Person! At present I'm se=
arching for fair gentleman)
I will reply to You my photo!
My E-mail box for response is: [email protected]) good luck!
.
Hai My.
Let's small talk:)
hope it is utstanding.
Im solitary gorgeous woman,
at present Im seeking fair male from United States of America;) What State a=
re you from?
I'm going to reply to You my picture attached,
this is E-mail for reply: [email protected];)
.
My my Sweet! May be You are free to proud small talk)
Today Im waiting for clean gentleman:)
I can reply to You my pictures
my email for contact is [email protected], Good bye
.
how is it going?
I hope U can talk
Now I'm trying to find tidy guy)
I am single class Babe)
I will reply to You my picture attach.
it's my Email for contact is [email protected]:) Thank you
.
my corking My peerless;)
Let's try to speak;)
Is everything recently?
soon I'm seeking generous guy. I am solitary praiseworthy 31 years old babe!=
I'll reply to You my photos.
Response me to [email protected];)
.
my pleasant mister Teddy Bear!
bonghjornu gentle!
Im commendable female. Soon Im looking for inimitable gentleman
I will reply to You my photo E-mail to me: [email protected]:) have a=
good time
.
soon Im waiting for openhearted dude) I'm single classic Female
e-mail to: Gorgeous_ [email protected]
I'm going to send You my photo:-) thank you in advance
.
hello My delicious:)
How is it going?
For now Im seeking astounding buddy. I'm cuddly lady,
I am going to send You my photo attach! Email is [email protected]:-)=
Thank you
.
My only mister single. Opa My robust:-) Let's try to speak, I'm solitary inv=
aluable chick
soon I'm searching for vivid man. My E-mail box for response is ketchamharle=
[email protected];)
I can send You my picture;)
Till next time
.
unsurpassable Mister Nonpareil.
how do you like it there?
what is your age? Let's idyllic small talk!
Where do u stay now?
Now Im looking for commendable not young guy;) I am unmarried able 32 y.o. M=
iss:)
I'm going to reply to You my photo attach! e-mail me: ballardbeckham42@gmail=
com;-)
.
greeting my beneficent! My untarnished Mr. Right:-)
May you are able to sick speak:) Currently Im look up no.1 male;)
Im alone precise Lady;) I'm going to send You my photo.
Reply me: [email protected];)
Thank you anyway
.
bonjorn;) my Mr. stylish May we praiseworthy speak) Let's commendable chat
Righ now Im look up wonderful man:) I am solitary unsurpassed Person:-)
Email box for reply is: [email protected]! I am going to send You my =
photos:-)
thank you anyway
.
Good Day;-)=0A=
Hope all is mint:)=0A=
=0A=
For now I am looking for capable male this is Email box for response is: va=
[email protected],=0A=
I'm going to reply to You my photo. Good luck!
.
satisfactory my satisfactory Currently I am searching for humane gentleman, =
Im lonely adroit Female!
I'll reply to You my picture attached,
email to me at: [email protected]!
thank you
.
may I ask u?
May be u're able to small talk:) At present I'm look up bang-up guy;-)
I can reply to You my photo! response me at: [email protected] Have a =
nice day
.
my My righteous Inviting my fair:-)
what's your age? hope U are unsurpassed:-) I wish to big talk:)
Where r You live now?
I am solitary desirable 32 y.o. lady Righ now I am trying to find goodly not=
young gentleman. I will send You my photo;-) Reply me at ninsanilatae@gmail=
com;-)
.
I'm original chick:-) Currently Im searching for crack buddy)
Response at [email protected]
I'll send You my picture attached;)
bye
.
My Unsurpassed:-)
hallo My breezy;)
What's your age?
how is it going?
Where are u stay now? Soon Im searching for goodnatured not young buddy:-) I=
m solitary absolute 32 yo mistress!
I am going to reply to You my picture attached;-)
Reply to me [email protected]:-)
.
My my useful!
At present I'm searching for pretty buddy,
Im intelligent Lady My Email box for response is [email protected]=
om. I'll send You my picture attach:-) Thank you
.
My moral Mr. magnificent:-)
what's your age?
do u want to know me?
Where are U from?
I'm bright 32 years old woman, today Im waiting for honourable not young guy=
,
this is email box for reply: [email protected]:) I will send You my p=
icture attach,
.
Inviting My right:-)
Where r You from?
how old are you?
presently I'm seeking valuable not young dude:) I'm natural 32 years old gir=
lfiend;)
it's my Email for reply [email protected];)
I am going to reply to You my photos)
.
can I ask a question.
soon I'm trying to find careful man;-)
I'm lonely cheerful Babe reply to [email protected];)
I am going to reply to You my photo attach. Good luck!
.
My my Chic;-)
I wish to chat;)
Immediately I am waiting for humane buddy,
response to me: [email protected])
I will reply to You my photo:) thank you anyway
.
My impeccable Mister Courageous.
Let's try to disturbed small talk;)
Where are You stay? how old are you? Im class 32 yo Woman.
At present I am waiting for impeccable not young gentleman:) e-mail me to: t=
[email protected]! I am going to send You my picture attach;)
.
my mister Advantageous!
hai irreproachable
now I'm looking for calm gentleman from United States of America) What State=
are u from? I'm just Babe.
I can send You my picture;) reply to: [email protected]!
Have a nice day
.
my neat Friendly:-)
bon dia.
How're things? I am single kindhearted female,
Immediately I'm searching for inimitable dude,
I am going to reply to You my photo attached:-)
Write me to: [email protected],
Have a good day
.
successful Mister Nonsuch:)
I want to talk;-)
I am pretty Female, for now I'm looking for original male.
I will reply to You my photo attach! it's e-mail for reply: mathiasw323@gmai=
l.com! have a nice time
.
I hope you can phenomenal talks! currently I am seeking loving guy;) I'll se=
nd You my photos;) This is my Email for reply is: [email protected]
Thank you in advance
.
Hej my I am lonely curious girlfiend) at this moment I am waiting for blamel=
ess mister from USA;) What State are You from?
Email for response [email protected];-)
I'll reply to You my picture:)
.
At this moment Im looking for perfect gentleman)
E-mail box for reply is [email protected])
I'll send You my photo attach:-) Talk to you later
.
bonjour!
my Admirable!
May U speak with me, Let's talks:-)
I am solitary top-grade Miss
For now I am looking for well-disposed gentleman from United States;-)
What State are You from?
I can reply to You my picture;) This is my E-mail: pyzhyanovaadarya@outlook.=
com)
.
mister Buddy;) Soon I'm seeking successful guy from US:) What State are You =
from? I am lonely interesting mistress,
it's Email: [email protected]. I'll reply to You my picture attach:-=
)
.
my humane mr. Reputable.
Bonjorn my Hope you r capable;-)
I am adorable mistress:-) Righ now Im searching for perfective mister from U=
S;) What State are You from? I am going to reply to You my photo attached!
e-mail to [email protected]:-)
.
Bona jorno my. May you please talk with me
Let's try to chat;) at present Im seeking supreme gentleman:) my email box f=
or reply is: [email protected]) I can send You my pictures, Good bye
.
hei My;) I need to saving speak;)
At this moment I'm waiting for respectable male, Response me erratiorgo@gmai=
l.com:)
I'm going to reply to You my picture attached thank you
.
My brave Savory)
Hola my intelligent;-) may u please do me a favor:-) May be u r free to smal=
l talk;-)
Soon I'm look up kind male:)
I'm valuable Person this is my Email box for contact [email protected]
I'll send You my photos
have a nice time
.
Good day to you my dear!!
Am writing to let you know that your email has been received together with your transfer information and I want you to know that before I can be able to start transferreing your 950.000.00 to you you have to pay the $25.00 first to enable me register your money and start the transfer of your 950.000.00 as soon as you pay the $25.00 through steam wallet card or Google play card. So try as much as you can to make sure you send the needed $25.00 to enable you received your 950.000.00 immediately. Thanks. As am waiting to hear from you now. Mr. Ben Ken
Saturday, 21 August 2021, 03:49AM +01:00 from Aaron Clark [email protected]:
Hello,
Can you give me some more info about what you're offering? Specifically, how does it apply to our business? How can we use this?
Aaron Clark
CEO, MNesty, LLC
On 20/08/2021 20:11 PM, wrote:
> UN/WB/FNG COMPENSATION COMMISSION
> OUR REF: UN-FGA/WB4/13
> YOUR REF: (UN/WB/FGA)..00/14
> BATCH: (425526289)
>
> Attention
>
> Scam Compensation sum of $950.000.00 dollars approved in your name
> through United Nations mass assisted project funds. This compensation
> involves business investment failure, Inheritance, Contracts, Lottery,
> Dating, Diplomatic Payment, loan E.T.C, the mass assisted fund was
> approved to settle failed business / scam extortion.Attn Scam
> Victim.We wish to inform you that your scam compensation sum of
> $950.000.00 united states dollars approved through United Nations mass
> assisted project, we have severally tried to contact you without
> success, are you willing to receive your scam compensation? You have
> to respond as soon as you receive this message because we have your
> compensation file submitted by UN external auditors in Switzerland but
> we have not heard from you. International global security watchers
> reported different degrees of being a victim of scam about you, so
> there is a need for you to get intouch with us right immediately you
> will never have an opportunity of this kind in the nearest future so
> your destiny and survival is in your hands.
>
> (1) Most times they will contact you to help them claim some certain
> amount of money as next of kin, (2) they will send different manners
> of mouthwatering proposals of how you become a contractor of some
> over-invoice amount,(3) they will present you as inheritor to some
> funds, (4) They even went to the extent of promising you marriage
> which will still end up extorting your hard earned money, (5) they
> used different means and stories like buying of gold and precious
> stones and scraps which also will result to scam in the end, most
> times they impersonates and offer you job opportunities that still end
> in extorting your hard earned money and also uses ATM system to rip
> you off.Their intentions have always been to wreck you financially and
> emotionally because nothing good will be archived in the end. We have
> comprehensive information about how they operate through the security
> INTEL of international security watchers, they impersonate with
> fabricated documents without AICD security chip.They impersonate FBI
> and other security offices to intimidate or threatened you to send
> them money or go to jail. You will hear more as soon as you respond to
> this message.
>
> In furtherance, I presumed you must have been wondering why after
> paying all the fees requested by those crooks nothing was paid to you
> rather they enjoyed your hard earned money without remorse of their
> evil deeds. The only funds approved in your name was $950.000.00 from
> the United Nations mass assisted project, those crooks operates
> through different avenues, local and from many countries especially
> west Africa, Nigeria, Spain, Ghana, Benin republic, Isia, Malaysia,
> Indonesia E.T.C.The funds was approved so that you can invest into
> your own private business, it serves as help to your financial growth,
> it serves as debt reconciliation. Calculate how much you have sent to
> them yet not even a cent has been given to you, for how long will you
> believe them? Please don=E2=80=99t waste time to contact us for more
> information=E2=80=99s.
>
> Finally, you will be surprise to hear more but be happy that United
> Nations mass assisted project has come to your rescue whatever you
> have gone through in their hands. We are going to provide %100 percent
> comprehensive evidence and gazette of how your scam compensation will
> be released, you can make inquiry and submit whatever business you are
> doing at the moment for security check and Intel report of the truth
> in the business. You will not regret rather be bold to expose evil no
> matter how they preach and convince you.In addition, your payment will
> transferred through accredited western union money which will we will
> serve as the watch-dog during the payment, why we choosed western
> union as a means of transferring this fund is because an accredited
> western union is easy, safer and reliable but why western union fail
> some persons is when you intend to transfer huge amount of money from
> unaccredited western union then it ends up being a failure.
>
> You are to confirm and provide to us your postal address below.
>
> YOUR FULL NAME...................
> YOUR COUNTRY.....................
> YOUR HOME ADDRESS..............
> YOUR DIRECT PHONE................
>
>
> Note: that the only money to pay for this transaction is the
> registration fee of $25 and you purchase an itune card of $25,and send
> the information to us for immediate remittance of your fund to
> you.Note: that every claims has an expiring period of five working
> days (5days) so you have to do that very urgently to avoid expiration,
> call me (+1 405) 79646
> Thanks
> Your sincerely
> Mr. Ben ken
> Director Of Scam Victim Compensation payment Centre
>
> .
My My Beneficial
Ciao my;)
How old are You? could I ask You a question?
Where r You stay right now?
Let's chat:-)
Righ now I am look up kindhearted not young man:-)
I'm single perfect 32 yo Babe,
I'll send You my photos)
My email box for contact is [email protected].
.
What's your age? Where are You stay right now?
I'm normal 32 y.o. girl,
Immediately Im searching for sound not young buddy I can reply to You my pic=
ture attach:-) Write to me: [email protected]:)
.
Mister Universal, Where r U live now?
What's your age?
Now Im waiting for satisfactory not young buddy:-)
I'm benign 32 years old person.
Email me at [email protected];)
I can send You my picture:-)
.
Salutation my invaluable
I hope you're able to small talk;-)
At present I am searching for choice gentleman, Im limpid girl.
reply me to: [email protected])
I am going to send You my photo attached;)
have a nice time
.
Mr. kindhearted,
How do u like it there? At present I am waiting for soundly guy from United =
States of America.
What State are you from? I'm bang-up Female;-) it's my email box for answer =
is [email protected])
I can reply to You my photo attached:-)
.
All drafty;)
now I'm looking for useful man:-)
I'll send You my picture:) email me at [email protected],
Talk to you later
.
Soon Im look up desirable gentleman:) Write me [email protected];-)=
I'll send You my photo attach:)
till next time
.
My alive beneficial.
I hope you can speak;)
do U wish to know me?
Presently I am waiting for loose mister from United States.
What State are U from? Im unequaled mistress:)
I can reply to You my photo.
It's my Email for reply [email protected]:-)
.
Im solitary cheerful Person)
Soon Im trying to find open guy from United States of America;)
What State are You from?
Response to [email protected])
I'm going to send You my photo attach:)
Have a good day
.
I am alone amazing female:)
Soon I'm searching for ordinary mister from USA:-) What State are You from?
write me to [email protected]:-)
I can reply to You my picture attach,
.
agreeable mister Alive;-)
Let's chat:)
presently I am seeking robust mister from United States of America
What State are You from?
I am intellectual Person;-)
I'm going to reply to You my photo:)
Email to me at [email protected])
Good bye
.
bonzur my cool;-)
my Mr. Inimitable!
Could we small talk:-)
Where r U from?
what is your age? Im gentle 32 yo woman
at present Im searching for ideal not young guy!
I'm going to send You my picture!
e-mail to me [email protected]!
.
My enjoyable mister Savoury:)
Let's cardinal chat;-)
how so? Today I'm seeking classic guy:-)
I'll send You my photo attach;-) Email me at: [email protected]
Good bye
.
at this moment I'm seeking attentive mister,
I'm unstained female;) I will send You my photo;)
e-mail to: [email protected];) bye
.
my my incomparable;)
Immediately Im seeking adventurous dude;)
reply to me: [email protected]:-)
I can reply to You my pictures) Bye
.
May I ask? I'm astounding Babe. soon Im searching for beloved mister;)
email me at [email protected]:-)
I am going to send You my photos;-)
Bye
.
My propitious.
Let's talk!
I am solitary caring female.
at present I am looking for perfect male.
this is my email box for contact is: [email protected].
I am going to reply to You my photo attached
Have a nice day
.
Im supreme Girlfiend!
Righ now I am looking for correct mister from United States What State are Y=
ou from?
Write at: [email protected];)
I can reply to You my photo attached
have a good time
.
my sir Astonishing!
Hi My;) Is it delicious?
Let's try to curious talk,
I am single incredible Chick:-)
Today I'm trying to find goodnatured mister from US,
What State are U from? I can reply to You my photo;)
This is e-mail is: [email protected];-)
Thank you anyway
.
Sir Poppet)
May I ask You? I am solitary adroit Person)
now Im searching for useful guy from United States of America:) What State are U from?
I can send You my picture attach.
My email box for contact [email protected]!
Talk to you later
.
salute My;)
how is everything? immediately I am seeking noble male from USA, What State are You from?
I'm single limpid Mistress, I can send You my picture attach!
Response me to [email protected],
Thank you
.
Salud:) my fine Mr. Tidy today I'm trying to find smashing gentleman:)
I'm going to reply to You my photo attached;-)
it's Email box for response is [email protected];)
thank you
.
greeting,
Im single incredible Female.
For now I am look up goodness buddy from United States:) What State are You =
from? I can send You my photos, My E-mail box for reply: [email protected]=
m;) Have a nice time
.
My my perfectible:-)
bonzur my;)
I want to quality small talk
Im savoury Miss:)
Righ now Im trying to find holy man from US)
What State are U from?
I am going to reply to You my photo attached:-) my Email for response: lytle=
[email protected];)
.
Let's chat,
Can u please answer,
I'm alone open lady.
Today I am waiting for worthy male from United States of America;-)
What State are U from?
This is my Email box for response [email protected])
I'll send You my picture attach;-)
thank you in advance
.
Hi great person;-) What are you making now?
I do not distract you?
I am searching for a real person for serious relations:)
My pas relations have been unhappy.
Because the guy let me down:)
I am Darya I am from the Republic of Russia,
Don�t be afraid
I'm a real female;-) I do not try to play,
I am seeking for a great love Are you ready to continue our mailing?
My E-mail:
[email protected]
I have a PC2 at home:)
Email me the answer;-)
I send you my pic, Your friend Darya.
.
I hope You're able to talks
could I ask? At present I am waiting for successful buddy from United States=
of America:-)
What State are U from?
I'm utstanding Miss.
E-mail me at [email protected]:-) I can reply to You my picture atta=
ched:-)
.
My precise Sir Bland:-)
Bonghjornu unique!
currently I am seeking splendid gentleman from United States of America. Wha=
t State are u from?
I'm alone admirable Girl:)
I'll reply to You my picture;)
Write to: [email protected]) good bye
.
Bonzur unblemished:)
Soon I am looking for reliable gentleman from USA:) What State are You from?=
Im unmarried goodness Person:-)
reply me: [email protected]:-)
I'm going to send You my pictures, thank you
.
Inviting my) complete My vigorous:) I hope You r melodic!
I need to icy small talk;)
at this moment I'm seeking gentle mister. it's e-mail [email protected];-=
) I can send You my photo;-) thank you
.
Hi. How are things here?
I wish to small talk. I'm auspicious person.
presently I am look up invaluable mister.
I can send You my pictures.
Email to me at: [email protected]. have a nice time
.
my cuddly king:-) Hi my!
I am earnest. Immediately Im waiting for appetising buddy;)
I am solitary agreeable 33 years old Babe)
It's my e-mail for contact is [email protected].
I will reply to You my photo!
.
hey adorable;)
Righ now I am searching for joyous guy;)
I am bland 33 years old girl) it's my e-mail for answer Golubtsova_Polina@ou=
tlook.com:) I am going to send You my photo,
.
unsurpassable Sir vivid.
could You talk? I am solitary capable 33 yo Lady.
today I'm look up blameless dude)
I can send You my photo attached;-)
It's my E-mail for response [email protected],
.
Greeting lively.
ripe creditable.
I hope You can talk. There is a funny day. I'm blameless female.
At this moment I'm seeking limpid dude from US.
What State are you from?
I'm going to send You my photos.
This is my email for response [email protected].
Talk to you later
.
generous My Fine, hey my:)
Righ now I'm searching for calm guy,
I'm unmarried ripe lady;) I can reply to You my photo:) e-mail at Misskseniy=
[email protected];-) have a nice day
.
Hello,
I'm best babe!
righ now I am trying to find calm mister)
I'll send You my picture attach)
This is email for answer is [email protected],
Talk to you later
.
my Angel)
Good Morning my shining!
How come?
I hope You can tired talks.
At this moment Im looking for uncomparable guy,
Im warm Lady;)
Email me: [email protected];)
I'm going to send You my pictures.
Good bye
.
hey My,
kindly mr. gorgeous:) what is your age?
Where do u stay now? could You eventual answer me? At this moment Im waitin=
g for gentle not young male! I'm lonely cuddly 32 years old Person:)
I am going to send You my photo attached;-) it's E-mail box is: deakanzelika=
@gmail.com.
.
hey My goodygoody,
Righ now I am look up brave male from US!
What State are you from?
I am alone rreproachable girlfiend:)
I'm going to reply to You my picture attached;)
write me: [email protected]:)
.
Hi My;-)
my bright mr. nice, Are you superior?
May be You're free to chat) Im righteous lady!
now I'm waiting for limpid male,
this is e-mail for response [email protected]) I'll send You =
my photo attach,
Thank's
.
good evening my unique,
my mr. Cheerful:-)
I need to small talk;-)
for now I'm searching for shining man from US, What State are U from?
I am only Miss) email box for answer [email protected],
I can reply to You my picture.
.
My Mister beloved:) What is your given name? I want to perfection chat:)
at present I'm look up real dude from United States. What State are You from=
?
Im solitary adventurous Chick,
I'm going to reply to You my photo attached;) E-mail to me: avramjump@gmail.=
com)
.
My mister Snookums:-)
Soon Im searching for true male:)
I'm single delectable Miss,
Reply me at: [email protected],
I'm going to send You my picture, Good bye
.
Hi perfectible!
Im angelic Lady!
presently Im waiting for smashing guy;-) I'm going to send You my photos)
response me to [email protected]!
Good luck!
.
my my brave) How do You like it today?
May be You are free to talks)
Currently I am waiting for modish gentleman from USA!
What State are you from?
I'm unmarried magnificent girl;-)
I'll send You my picture attached;-)
this is E-mail for contact: [email protected]!
.
Hey My shining:)
Let's try to adequate talks!
Im unmarried perfect Woman)
at present I'm seeking invaluable mister, It's email box for reply Tatianali=
[email protected]:)
I'll reply to You my picture! thank's
.
Let's small talk:) immediately I am trying to find clean man,
I'll reply to You my pictures:-)
This is Email box is: [email protected].
have a good day
.
my intelligent My Perfect:-)
Let's chat!
Could you please chat with me.
I'm lonely pure Chick,
for now I'm looking for remarkable mister;) I can send You my photo attach. =
My E-mail box for reply [email protected]. have a good time
.
Is it a fumbling mood today? I hope you can speak,
I am lonely cheerful Lady in Russia)
presently I am waiting for adventurous gentleman;-) this is Email for contac=
t is [email protected], I can reply to You my pictures)
Have a good day
.
Hello my yummy! today I am trying to find tidy dude:-)
It's my email box [email protected].
I can reply to You my photo)
Good luck!
.
hey My perfective;)
Is there a interest mood today?
currently I am searching for utstanding guy;-)
Im solitary astonishing Woman:-)
This is my email for answer [email protected]!
I'll reply to You my photos)
Have a nice time
.
good day:-)
Where do You stay now?
how're things?
I hope You can odd small talk,
What's your age?
now Im searching for precious not young guy;-)
I am correct 33 years old Female!
This is Email for response [email protected].
I'll send You my picture attach;-)
.
There is a vast morning,
At present Im looking for curvy male!
I am awesome Babe;-)
I'll send You my photos. Email me at: [email protected],
Bye
.
Good Morning my soundly.
May we chat? Today Im waiting for careful gentleman:-) I'm solitary generou=
s Mistress! I can reply to You my photo:)
response at: [email protected]. Thank you
.
my incredible my Successful, hello my admirable;)
Hope it is faithful:-)
Where are You from?
what is your age?
at this moment Im searching for groovy not young dude. I'm splendid 33 yo gi=
rl:-)
E-mail to [email protected]:) I'll send You my picture attach;)
.
what are you up to?
For now I am looking for interesting dude from USA!
What State are u from?
Im brave Female!
I can reply to You my photos. Response to [email protected]! Good bye
.
Can you do me a favor! I hope you're free to speak.
Righ now Im look up opportune dude)
I am thankful 37 yo Lady living in Russian Federation)
reply to me [email protected]!
I am going to reply to You my pictures)
.
Good Evening my.
likable my awesome!
I wish to talks! what's your age?
Where r u from? Im unmarried kind 33 y.o. female
for now Im look up curvy not young dude.
I'll send You my photo attach;-)
E-mail me: [email protected]
.
A hacker can use your mailing address for their illegal purpose you need to make this fix dmrc and spf and also a hacker can use your url where click jacking is happening you need to set up the i frames.
Expect a bounty for my work .
Waiting for your reply
Kind regards
On Wed, Dec 29, 2021, 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
Hi My bouncy,
Currently I am seeking noble guy from United States! What State are You from=
? I am joyous Person. I'm going to send You my picture attach)
Email me at: [email protected],
have a nice time
.
good evening My,
Where do U live right now?
can you please do me a favor;)
What's your age?
Let's calculating speak, at this moment Im looking for capable not young guy=
) I'm single intelligent 33 yo miss
I'm going to send You my picture attach:) Reply to me at keenerchrist80612@g=
mail.com:-)
.
My mr. Single.
good evening my, how do you like it?
I wish to busy chat) Im solitary truthful Chick.
at present I am seeking champion gentleman from United States of America) Wh=
at State are u from? I can reply to You my picture attached) write to me at:=
[email protected])
have a good day
.
what is your age? You can call me Monica:-) Where r You from?
I need to talks:)
Immediately I am seeking best not young guy:)
I am single valuable 33 y.o. babe,
email for answer is: [email protected]:-)
I'm going to send You my pictures!
.
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Wed, Dec 29, 2021 at 3:29 PM james official <[email protected]> wrote:
A hacker can use your mailing address for their illegal purpose you need to make this fix dmrc and spf and also a hacker can use your url where click jacking is happening you need to set up the i frames.
Expect a bounty for my work .
Waiting for your reply
Kind regards
On Wed, Dec 29, 2021, 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
hi!
soon I am look up polite dude from United States of America.
What State are You from?
Im lonely unparalleled chick! It's email for response is: billrathel27@gmail=
com.
I'm going to reply to You my picture attach!
.
hey tidy!
my Kind,
How do you like it here?
I am single normal Girlfiend)
Righ now Im trying to find openhearted man from United States.
What State are you from?
reply me: [email protected].
I can send You my picture,
Till next time
.
Good Evening my magnificent!
What is your age?
Where r u stay now?
Im unsurpassed 33 yo female:-) Now I'm trying to find adorable not young gen=
tleman!
this is Email box for reply [email protected].
I am going to reply to You my pictures,
.
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Jan 3, 2022 at 12:29 AM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Wed, Dec 29, 2021 at 3:29 PM james official <[email protected]> wrote:
A hacker can use your mailing address for their illegal purpose you need to make this fix dmrc and spf and also a hacker can use your url where click jacking is happening you need to set up the i frames.
Expect a bounty for my work .
Waiting for your reply
Kind regards
On Wed, Dec 29, 2021, 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
my supreme)
How old are You? Where do You right now? Currently Im seeking no.1 not young=
dude:-)
I am intellectual 33 yo chick.
I am going to send You my photo)
e-mail me to [email protected]:-)
.
Greetings of
the Day!
Are you looking for a custom SEO?
Customized
SEO packages are more affordable than any other fixed SEO packages.
You can
purchase any of the below activities separately.
Blogger
Outreach
Local
Citation
Content
Syndication
SEO ON-PAGE
Review
Posting
Content
Writing
Link Building
Please let me
know if you are Interested any of the SEO activities, we will send you pricing
for your kind consideration.
I look
forward to hearing back from you soon.
Warm Regards,
x
Good Morning serviceable:) mr. Honey Bear,
Where are You from?
What is your age?
I am single advisable 33 years old Mistress:-)
Presently I am looking for classic not young guy:)
Reply to me at: [email protected];-)
I'm going to reply to You my picture.
.
how old are you? Where r u from?
I'm alone opportune 33 years old chick!
Soon I'm trying to find magnificent not young male;)
response at: [email protected]:) I can send You my picture attach,=
.
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Jan 10, 2022 at 12:39 AM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Jan 3, 2022 at 12:29 AM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Wed, Dec 29, 2021 at 3:29 PM james official <[email protected]> wrote:
A hacker can use your mailing address for their illegal purpose you need to make this fix dmrc and spf and also a hacker can use your url where click jacking is happening you need to set up the i frames.
Expect a bounty for my work .
Waiting for your reply
Kind regards
On Wed, Dec 29, 2021, 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
My name is Richard Madden whi,
Business Development Manager for an international marketing company based in
India
We are an ISO 9001 and Google Accredited Company, with over
11 years experience in the field of Search Engine Optimization. We have the expertise
to send hundreds or even thousands of customers to your website. We can tell
you quickly.
We offer the following services.
1. SEO (with plan & activity) 2.
SMO (LinkedIn, Facebook, Twitter, YouTube, Instagram) 3.
ORM (Online Reputation Management) 4. Google
Ads 5. Content Writing 6. Voice Search SEO.
We are proud to inform you that our team handled 500+ SEO
projects and obtained 150000+ manually built links in the past 1 Year.
I’d be happy to send you our package and pricing if
you'd like to assess our work.
Look forward to hearing from you.
Kind Regards
Richard Madden
Online Marketing Executive
how old are you? Where do U stay now?
For now I'm trying to find worthy not young guy.
Im alone supreme 33 yo person
I am going to send You my picture attach!
e-mail: [email protected])
.
Where are U right now?
What is your age?
I am so earnest. Currently I am searching for yummy not young gentleman;-)
I'm only 33 yo Chick!
I'll reply to You my photo;-) e-mail box for reply is: [email protected]=
om;-)
.
Hello My, Let's try to high speak;)
Are You ready? At this moment I'm waiting for intellectual guy!
I'm going to reply to You my photo attach
email me [email protected])
Thank's
.
Good Morning:-)
I am alone invaluable chick,
today I'm looking for angelic dude. I can reply to You my pictures my e-mail=
box is [email protected];-) Have a good time
.
good day;) Where r U stay now?
how old are you?
I'm top-quality 33 yo Girlfiend;-) now I'm searching for beatific not young =
buddy, I am going to send You my photos) Write to me [email protected]=
m!
.
I want to puzzled talks. Where r u stay right now? What is your age? Could I=
ask You?
I am indispensable 33 yo Chick;-) immediately Im searching for oneandonly no=
t young buddy! My E-mail box is: [email protected]! I'm going to send=
You my picture attach;)
.
Hi.
how old are you?
Where do u stay now?
at this moment I am look up interesting not young guy) I am single worthy 33=
y.o. female! I'll send You my picture attach!
response to: [email protected];)
.
Hi My:)
My vigorous;-) Where r You live?
what's your age?
Let's try to mature talk)
I'm desirable 33 yo person:-)
Immediately I am seeking great not young guy,
write to me at [email protected]:-) I can send You my photo:)
.
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Jan 17, 2022 at 1:52 PM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Jan 10, 2022 at 12:39 AM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Jan 3, 2022 at 12:29 AM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Wed, Dec 29, 2021 at 3:29 PM james official <[email protected]> wrote:
A hacker can use your mailing address for their illegal purpose you need to make this fix dmrc and spf and also a hacker can use your url where click jacking is happening you need to set up the i frames.
Expect a bounty for my work .
Waiting for your reply
Kind regards
On Wed, Dec 29, 2021, 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
perfect mister Unparalleled.
Let's small talk,
May you stark speak with me?
currently Im waiting for alive man)
Email box: [email protected].
I am going to send You my photos! have a good time
.
hello my slapup) my super mister wholesome)
Could we small talk?
Righ now I'm waiting for unsurpassable guy;-)
Im solitary beneficent woman,
I'm going to send You my photo attached! response at: cchaddiepollington049@=
gmail.com;-)
Thank's
.
Where r You from? What is your age? today I'm trying to find irreproachable =
not young guy;-) I'm sound 33 years old Female) E-mail to me at: gracewilkin=
[email protected];)
I am going to reply to You my picture attach:)
.
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Jan 24, 2022 at 3:06 AM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Jan 17, 2022 at 1:52 PM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Jan 10, 2022 at 12:39 AM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Jan 3, 2022 at 12:29 AM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Wed, Dec 29, 2021 at 3:29 PM james official <[email protected]> wrote:
A hacker can use your mailing address for their illegal purpose you need to make this fix dmrc and spf and also a hacker can use your url where click jacking is happening you need to set up the i frames.
Expect a bounty for my work .
Waiting for your reply
Kind regards
On Wed, Dec 29, 2021, 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
Good Evening my thankful:-) What is your age?
Where are u right now?
at this moment I am looking for classic not young male!
I am hot 33 y.o. Girl:-)
I'll reply to You my photo:)
Response to me at: [email protected]:)
.
my My Amazing:-) Where are u from?
May be You are able to graceful small talk;) How old are You?
Im chic 33 years old Woman,
for now I'm looking for delectable not young mister,
I will reply to You my pictures!
My Email for contact: [email protected];)
.
My agreeable Mister Crack.
What's your age?
what are you waiting?
Where are U from?
Soon Im seeking intelligent not young man,
I am irreproachable 33 y.o. Babe!
I'm going to send You my pictures:) e-mail to me [email protected]!
.
hi My, I hope You can firm small talk. What is your real name?
soon I'm waiting for loving mister! I am superb woman:)
I'll send You my picture:) it's Email for response is: ruddiesweeting8@gmail=
com, Good luck!
.
My unstained sir unparalleled
hi my utstanding:-)
Where are U stay right now?
what is your age?
Im solitary interesting 33 yo Person;) Currently Im searching for wonderful =
not young gentleman,
e-mail to [email protected]:-)
I am going to send You my pictures:-)
.
Good Day my chic:-) I hope you're able to talk) At present I'm searching for=
tidy gentleman;-) Im smashing girlfiend;)
it's my email box is: [email protected]:)
I'm going to send You my picture attached:-)
have a nice day
.
valid Mr. nonpareil.
Good Day My)
I'm alone righteous person. today I'm looking for notbad dude. this is my E-=
mail box for answer [email protected]:-) I'll send You my photos;) t=
hank you in advance
.
My Sir indispensable!
May You amused chat:) Let's try to chat
Currently I am searching for clever mister;)
I'll reply to You my pictures)
Response to: [email protected])
Thank you in advance
.
My enjoyable precise;-) Let's talks! How're you?
at present Im look up open buddy;)
email to me [email protected]:-)
I'll reply to You my picture attach. Good bye
.
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Jan 31, 2022 at 2:56 PM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Jan 24, 2022 at 3:06 AM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Jan 17, 2022 at 1:52 PM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Jan 10, 2022 at 12:39 AM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Jan 3, 2022 at 12:29 AM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Wed, Dec 29, 2021 at 3:29 PM james official <[email protected]> wrote:
A hacker can use your mailing address for their illegal purpose you need to make this fix dmrc and spf and also a hacker can use your url where click jacking is happening you need to set up the i frames.
Expect a bounty for my work .
Waiting for your reply
Kind regards
On Wed, Dec 29, 2021, 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
Do You Wish to know me?
I'm lonely advisable Person:-) currently I am searching for goodhearted gent=
leman:-)
I am going to send You my photo attach,
e-mail for response is: [email protected]) Thank you
.
My nice Mr. Invaluable;-)
Greeting my. how old are you?
Could we lonely chat)
May You are able to brisk talk:-)
Where are U from? Im matchless 33 y.o. girl.
now I'm waiting for straight not young male,
Email at: [email protected]:-)
I'm going to send You my photos:)
.
Good Evening my enjoyable!
sir immaculate)
Where do u live now? What is your age?
I'm auspicious 33 years old Lady)
righ now I'm seeking well not young gentleman;)
it's E-mail is [email protected]
I'll reply to You my photo attached.
.
good evening my pleasant. select Mr. adequate!
What's your age?
Where are You stay now? Im alone gracious 33 years old Babe:-)
for now I am waiting for remarkable not young mister:-)
This is my email for response is [email protected].
I'll send You my photo attached:)
.
my peerless mister adroit!
Hello my magnificent;-)
Where are You from? Let's chat:-)
What is your age?
I am great 33 yo Girl;-) soon Im looking for able not young guy!
I can send You my picture attach)
This is e-mail for contact [email protected].
.
My comfortable My Beneficial:-)
Where r You live now?
You want to chat with me? How old are You?
at this moment Im trying to find truthful not young male;-)
I am alone curious 33 y.o. lady. I am going to reply to You my photos this i=
s my Email box for answer [email protected],
.
My incredible Mr. desirable:-) How old are You?
Where r u stay now? At this moment I'm look up modish not young gentleman;-)=
I'm lonely notbad 33 yo person!
I am going to reply to You my photo attached:-)
Email me: [email protected])
.
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Feb 7, 2022 at 1:37 PM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Jan 31, 2022 at 2:56 PM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Jan 24, 2022 at 3:06 AM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Jan 17, 2022 at 1:52 PM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Jan 10, 2022 at 12:39 AM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Jan 3, 2022 at 12:29 AM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Wed, Dec 29, 2021 at 3:29 PM james official <[email protected]> wrote:
A hacker can use your mailing address for their illegal purpose you need to make this fix dmrc and spf and also a hacker can use your url where click jacking is happening you need to set up the i frames.
Expect a bounty for my work .
Waiting for your reply
Kind regards
On Wed, Dec 29, 2021, 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
Hey My:)
Let's try to insolent speak,
Im universal Chick, righ now I'm seeking natural man:)
response to me at: [email protected]! I can send You my pict=
ures,
have a nice day
.
hi my sound;-)
What is your age?
Where r You right now?
It's a cluttered evening:-) I am solitary beneficent 33 years old mistress:)=
presently I'm looking for able not young gentleman.
I'll send You my photo attach;)
write me at [email protected])
.
Hi.
What's your age?
I hope You can speak;-)
Where r You right now? righ now I am waiting for true not young dude:)
I am unmarried outstanding 33 years old lady)
I will send You my photo attach,
This is my email box for reply: [email protected],
.
How do You like it today? Currently I am looking for savoury mister,
I can reply to You my picture attach
My email box: [email protected])
have a good day
.
Where do u stay? May You please answer?
I hope you can even talks)
What is your age?
I am excellent 33 yo babe:)
Now Im look up brave not young dude) It's E-mail box for response: anselnull=
[email protected]
I can send You my photos;-)
.
hope everything is concerned.
how old are you? I hope You can demonstration small talk)
Where are You live?
Currently I'm waiting for gentle not young man!
I'm just 33 y.o. Chick:-)
I'll send You my picture attached:)
email at: [email protected].
.
good day My friendly;-) curious Sir praiseworthy! Where r You from?
How old are You? Today I am looking for beneficent not young gentleman;-) Im=
interesting 33 years old Chick
I'm going to reply to You my photo email to: [email protected]:)
.
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Feb 14, 2022 at 2:37 AM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Feb 7, 2022 at 1:37 PM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Jan 31, 2022 at 2:56 PM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Jan 24, 2022 at 3:06 AM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Jan 17, 2022 at 1:52 PM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Jan 10, 2022 at 12:39 AM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Jan 3, 2022 at 12:29 AM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Wed, Dec 29, 2021 at 3:29 PM james official <[email protected]> wrote:
A hacker can use your mailing address for their illegal purpose you need to make this fix dmrc and spf and also a hacker can use your url where click jacking is happening you need to set up the i frames.
Expect a bounty for my work .
Waiting for your reply
Kind regards
On Wed, Dec 29, 2021, 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
good evening my:) At present I am searching for splendid male;-) My Instagra=
m is: @ms.veronika_kitty
Have a nice time
.
Hey perfect:) how old are you? Where are u live now?
How is it?
Let's try to chat, I am solitary notbad 33 yo Girl:-)
for now I am looking for savoury not young man, E-mail to: boneteilee277@gma=
il.com,
I am going to send You my photo.
.
Sir Vigorous) Where r U right now?
what is your age? I am alone peerless 33 years old Girl, Currently I'm waiti=
ng for nonsuch not young guy!
I'm going to reply to You my picture attach:-) email me boneteilee277@gmail.=
com:)
.
warm Vigorous;-) Hi Where r U stay?
what's your age? I'm lonely top 33 yo Woman:-) presently Im seeking competen=
t not young male:-) Reply to me at [email protected]!
I am going to send You my picture attach;)
.
Hi,Just wondering if you had a chance to check my email below? Regarding Website & Apps Development
service. Let me know if you are interested so that we can move ahead.
Kindly share your requirementsI am waiting for your requirements.
Thanks,On Fri, Dec 10, 2021 at 12:27 AM Pinki <[email protected]> wrote:
Hi,
Hope you are doing well!
Would you be interested in building Websites and Mobile Apps for your business? We provide
services listed below:
• Custom App
Development (iPhone & Android Apps)
• App Store
Marketing
• Website Design
& Development
• e-Commerce
solutions
May I know if you are interested in any of these services?
Let us know your project requirements or maybe a reference
website or an existing app name which you think is similar to your need. We
would suggest an action plan post reviewing your needs which could be
considered by you.
Regards,
Pinki
My interesting mister unblemished
righ now I am searching for goodly male) Write me [email protected];)
I'm going to reply to You my pictures.
have a nice time
.
My mr. irreproachable! I am unmarried interest Lady;-) at this moment I am l=
ooking for unblemished dude! This is Email box for response farfirstwife@gma=
il.com. I can reply to You my picture:)
have a nice day
.
hope everything silly) Im unmarried trustworthy female:-)
Currently I am searching for single guy;)
e-mail me: [email protected],
I can reply to You my picture attach have a nice day
.
Hi My!
strong for 's;) http://sgibson.com/pharm2/
.
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Feb 21, 2022 at 10:06 PM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Feb 14, 2022 at 2:37 AM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Feb 7, 2022 at 1:37 PM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Jan 31, 2022 at 2:56 PM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Jan 24, 2022 at 3:06 AM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Jan 17, 2022 at 1:52 PM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Jan 10, 2022 at 12:39 AM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Jan 3, 2022 at 12:29 AM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Wed, Dec 29, 2021 at 3:29 PM james official <[email protected]> wrote:
A hacker can use your mailing address for their illegal purpose you need to make this fix dmrc and spf and also a hacker can use your url where click jacking is happening you need to set up the i frames.
Expect a bounty for my work .
Waiting for your reply
Kind regards
On Wed, Dec 29, 2021, 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
Hi My, May You please talk? Let's chat I'm breezy Person)
Now I am seeking successful man;)
I will send You my photo attached,
email for reply is [email protected];-)
Thank you in advance
.
hello better;-) wish to try me?
Righ now Im looking for unmatched mister;-) I'm alone useful Miss.
I will reply to You my photo attach.
it's email box for answer is: [email protected]
thank's
.
good evening My. Where r U now?
how're You? At present Im looking for praiseworthy male:-) I'm unmarried com=
petent 37 y.o. Girl living in Europe:)
My email for reply [email protected].
I'm going to send You my photo attached!
good bye
.
good morning;-) I hope you can calculating talk
I'm solitary savoury chick;)
Immediately I am look up goodness guy from United States
What State are You from? email me [email protected]:)
I'm going to reply to You my picture attached.
.
good day
Im unmarried capable lady;-)
righ now I am trying to find cool mister from US.
What State are u from?
Reply me at [email protected]:)
I can reply to You my photo
thank's
.
my Pleasing;-)
I need to talks;-)
Currently I am seeking attractive buddy from USA:-)
What State are u from?
I'm unmarried kindly mistress;) Reply to me [email protected],
I can reply to You my pictures,
.
my unsurpassed My handsome:)
Where r You stay now?
Today Im searching for curious buddy
I'm excellent 37 years old Woman living in Europe.
It's e-mail box for response is [email protected]!
I am going to reply to You my pictures,
.
my delicious Sir juicy;) Good Evening;-)
how is going?
Where r U now? Let's try to talks, now I am waiting for successful male;-)
Im unmarried trustworthy 37 yo Miss living in Europe it's e-mail for contact=
is [email protected]:)
I can send You my photo attached.
thank you anyway
.
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
my incomparable Sir attentive Let's dusty talk;) Where are U from? how is it=
going? Im perfectible 37 years old Girlfiend living in Europe;) Presently I=
m looking for goodygoody male
I will send You my pictures.
Reply at [email protected]:)
have a good day
.
Hi,
Just
wondering if you had a chance to check my email below? Regarding Website & Apps Development service. Let me know if
you are interested so that we can move ahead. Kindly share your requirements
I am
waiting for your requirements.
Thanks,
On Tue, 8 Mar 2022 at 09:39, Monica Kumari <[email protected]> wrote:
Hello,
I hope this mail finds
you in good health,
At our IT Company, we
can build websites and mobile applications for your real estate
business. Our developers build optimized websites and mobile
applications to reach potential clients. For your Real Estate Company we can
plan an outstanding mobile application that will do wonders in your real estate
business.
We add a user-friendly
interface to your application so that everyone can enjoy the features. Our
developers and graphic designers add attractive features and images that
impress the users to a great extent. Our content management team uses striking
punch lines that catch attention.
If you wish to skyrocket
your real estate business in real-time, please get in touch
with our professional application developers in the first place. We know how to
attract real-estate customers to your agency with user-friendly sections that
showcase your service areas. With our application developers by your side, you
can experience a swift hike in the profit graph of your business.
We would love to serve
you.
Best regards!
My vivid sir Scrumptious)
do Want to see me? Where r You stay?
I hope you can talk;)
Today I am seeking lovely buddy;)
I'm immaculate 37 yo Babe from Europe. It's e-mail box for response is: inne=
[email protected]
I'll reply to You my photos) good bye
.
My mister Love:)
Good Evening gracious;) how is a day?
I want to small talk.
I am solitary super miss;-) currently I am searching for breezy mister! It's=
my Email box for answer [email protected];-) I can reply to You my photo a=
ttached;) thank you anyway
.
My comfortable My classic;-)
hi,
Where r U right now? I'm solitary top 37 years old Chick in Europe, Today I =
am seeking champion dude;)
I am going to send You my photo attach:-)
Email to [email protected]:)
.
Good Morning;-) Hope it is interest;)
Where r You from?
Im lonely propitious 37 years old woman from Europe:)
immediately I am searching for reputable man
It's my Email box for reply [email protected]:-)
I can send You my picture, have a nice time
.
Good Morning;-) I hope you can meek talks:-)
Where are u live now?
I'm alone groovy 37 years old woman staying in Europe.
Today I'm trying to find able man:) I am going to reply to You my photo atta=
ch:-)
my e-mail box for reply is [email protected]:-)
.
What is your given name? Where r You now?
I need to small talk.
I am solitary immaculate 37 y.o. Miss born in Europe.
At present Im trying to find only dude,
I will reply to You my photo attach:-)
my E-mail box for response [email protected].
.
Mr. Inimitable,
Where do U live right now? I want to talks! I am goodygoody 37 y.o. chick in=
Europe.
Immediately Im searching for charming guy:-)
Write me at: [email protected];-)
I'm going to reply to You my photo attach
Thank you anyway
.
Happy Monday
Hope you are doing well.
Hope you got any update for me ?
Waiting for your response and expecting a bounty for my work
Kind regards
On Mon, Mar 7, 2022 at 10:45 AM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Mar 14, 2022 at 11:30 AM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got any update for me ?
Waiting for your response and expecting a bounty for my work
Kind regards
On Mon, Mar 7, 2022 at 10:45 AM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
everything one-off?
Currently Im look up indispensable guy from United States:-)
What State are U from?
I am valuable Lady)
I am going to reply to You my photo attach
Reply me at [email protected])
.
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
Attn: Ashley Clark
thanks my friend for your urgent respond , please
fill this form for me, If you are interested send the
below needed details:
1.Your Full Names:.......................................
2.Your Address:.....................................................
3.Your Direct telephone number:............................
4.Occupation :........................Age:.................
I am expecting your reply.
so that we can finalize the transaction,
Best Regards,
Barrister Johnny Wood
Note : The form will be used to fill the document that will back up the
transaction,
As soon as you responds more info about the fund will be
giving to you , as I earlier stated in the proposal the source of the f=
und.
We would not seek your partnership if it truly had no benefit
for neither you nor my client, and most importantly because
your co-operation is paramount in achieving her goal.
I know you and her can work together to achieve success on this project.
Thanks
please reply through this email.... [email protected]
On 25/03/2022, Ashley Clark <[email protected]> wrote:
> Hi,
> Great, thanks. Could we have a short call to discuss the specifics? What =
are
> your contact details? Also, what is your pricing model like?
>
> Ashley Clark
> CEO, MNesty, LLC
>
> On 25/03/2022 19:57 PM, johnny wood wrote:
>> To:
>>
>> Sent: Fri, Mar 25, 2022 7:41 am
>>
>> Subject: Thank you for your time,......................
>>
>>
>>
>> Hello,
>>
>>
>>
>>
>>
>>
>>
>>
>> My client was head of a government accountability council in charge
>>
>>
>> of planning and rebuilding projects in the department of
>>
>>
>> Bahrain=E2=80=99s Ministry of Petroleum. She is also chairperson of a se=
ven man
>>
>>
>> Tenders Board Committee in charge of contract award and Payment
>>
>>
>> Approvals.
>>
>>
>>
>>
>>
>> Since the year 2007, her committee awarded major contracts in
>>
>>
>> the petroleum ministry that were executed by various oil companies
>>
>>
>> like Gazprom, PETRONAS, Chevron, Shell, Exxon Mobil, and many more.
>>
>>
>> Below is a brief description of some of the contracts awarded.
>>
>>
>>
>>
>>
>> =E2=80=A2 The expansion of pipeline network of crude oil and
>>
>>
>> down stream products distribution and evacuation. (Jan 2007)
>>
>>
>> =E2=80=A2 Supply, installation and maintenance of explosion Proof
>>
>>
>> Push-Button Stations.
>>
>>
>>
>>
>>
>> (Sept 2008)
>>
>>
>> =E2=80=A2 The construction of storage tanks for petroleum products
>>
>>
>> across Bahrain.
>>
>>
>>
>>
>>
>> (Jan 2009)
>>
>>
>> =E2=80=A2 Development of a 140,000 bl/d capacity refinery in the city of=
Riffa.
>>
>>
>> (Aug 2009-June 2010) Feasibility study, topographic study and the
>>
>>
>> refinery Construction have been completed.
>>
>>
>>
>>
>>
>> =E2=80=A2 Development of a 140,000 bl/d capacity refinery in the city
>>
>>
>> of Muharraq. (Oct 2010-May 2011) Feasibility study, topographic study
>>
>>
>> and the refinery Construction have been completed.
>>
>>
>>
>>
>>
>> =E2=80=A2 Development of a 100,000 bl/d capacity refinery in the city of=
Sitra.
>>
>>
>> (Mar 2011-Apr 2012) Feasibility study, topographic study and the
>>
>>
>> refinery Construction have been completed.
>>
>>
>> She received a total sum of Fifteen million ; Five Hundred Thousand
>>
>>
>> United States dollars ($15,500,000.00) from lobbyist's that represented
>>
>>
>> companies that were awarded those contracts.
>>
>>
>>
>>
>>
>> And because public servants in Bahrain are prohibited from opening
>>
>>
>> or operating foreign accounts, this made it impossible for her
>>
>>
>> to transfer this money into a foreign account, which then left her
>>
>>
>> with only one choice; to deposit the funds with a private safe
>>
>>
>> deposit company in the capital Manama to secure its safety.
>>
>>
>>
>>
>>
>> Due to the current political situation threatening the stability of the
>>
>>
>> country, she now has an urgent need to move the box out of Bahrain into
>>
>>
>> a safe country to ensure that the financial future of her family is
>>
>>
>> protected. She is willing to offer you 30% of the total amount
>>
>>
>> in return for your co-operation, and the rest of it will be invested
>>
>>
>> in your business project with a view to receiving very good returns
>>
>>
>> on investment.
>>
>>
>>
>>
>>
>> This is 100% legal and all documents that would guaranty PROOF OF FUNDS
>>
>>
>> will be carefully perfected by a London based lawyer in your favor
>>
>>
>> before using appropriate contacts to ensure that the funds are safely
>>
>>
>> transported out of Bahrain into your custody.
>>
>>
>>
>>
>>
>> We would not seek your partnership if it truly had no benefit
>>
>>
>> for neither you nor my client, and most importantly because
>>
>>
>> your co-operation is paramount in achieving her goal.
>>
>>
>> I know you and her can work together to achieve success on this project.
>>
>>
>> If the above details are under stood, please confirm so we can
>>
>>
>> provide more details for the way forward. please reply through this
>>
>>
>> email..... [email protected]
>>
>>
>>
>>
>>
>> Thank you for your time,
>>
>>
>> johnny wood
>>
>>
>>
>>
>
>
>
>
.
good day my charming;-)
how come? presently Im look up loving man from United States of America:-) W=
hat State are u from? I'm solitary unique babe! I can reply to You my pictur=
e attach:) E-mail me to [email protected].
have a nice day
.
Are You around? I am solitary cuddly Female:-)
currently I am waiting for likable dude from USA!
What State are You from?
write to me [email protected]!
I'm going to reply to You my picture
have a nice day
.
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Mon, Mar 28, 2022 at 1:10 AM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
Greeting;) my ordinary mister smashing)
Is it a valid morning today?
I hope You can chat;-) immediately Im looking for valuable gentleman from Un=
ited States!
What State are u from? Im calm lady
Email to me [email protected];) I am going to reply to You my pict=
ures. thank you anyway
.
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Mon, Apr 4, 2022 at 1:27 AM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Mon, Mar 28, 2022 at 1:10 AM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
Hello my breezy!
my classic sir Vigorous:-) I want to talks:-) Im lively person
Righ now I am trying to find delicious dude
E-mail to me at: [email protected];-)
I will send You my photo:-)
thank you
.
my Mister Kind;)
hey my beneficent;-)
What is your real name?
today I am look up polite mister;-)
Im solitary well Woman
this is email box for response is [email protected];-) I'm going to =
send You my photo attach) good bye
.
Sir Sweetie Pie:) may you please answer me:-) I am unmarried curvy female)=
=3Dmmediately I am look up incomparable guy from United States;-)=0A=
What State are you from? I'm going to send You my picture attached;)=0A=
=0A=
My Email box for answer is [email protected];-)
Vanderlei Jose de Souza
Prepara=C3=A7=C3=A3o de Materiais
+55 [11] 3670-5300, Ramal 5375
FUNDA=C3=87=C3=83O VUNESP
.
Good Evening My straight;-)
My slapup;-)
how're things?
Let's small talk!
Where r u from?
At this moment I am looking for comfortable dude for serious relationship
I never been married and have no kids,
I am single supreme 35 y.o. Mistress in Kiev, Ukraine:-)
This is my email for reply: [email protected]
I am going to reply to You my picture attach.
have a nice day
.
my smart My Moral
Greeting my unique;-)
at present Im seeking magnificent man from United States:-)
What State are you from?
I'm lonely polite Girl:-)
I can reply to You my picture,
My email box for answer: [email protected].
.
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Mon, Apr 11, 2022 at 2:18 AM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Mon, Apr 4, 2022 at 1:27 AM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Mon, Mar 28, 2022 at 1:10 AM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
Good Morning My pleasing) I want to final small talk,
Where r You stay?
I'm valid 35 y.o. girl living in Kiev, Ukraine
Presently Im look up irreproachable male for serious relationship:) I never =
been married and have no kids.
it's my E-mail box for response is [email protected]
I'll reply to You my photo attach;)
.
Good Evening My today I'm seeking honorable buddy:-)
Im unmarried appetizing Girl:) Reply to me: [email protected]:-)
I will send You my picture attached;)
Good luck!
.
My Mister Dearheart;-)
Let's try to glistening talks,
I am very serious;-) Now I'm look up robust gentleman;-) Im alone indispensa=
ble Girlfiend from Kazakhstan. this is Email for reply akpeiilIssayeeva@outl=
ook.com. I can send You my picture
.
mister Nonsuch:-)
how is it going?
immediately Im look up gorgeous gentleman
I'm solitary honorable person.
I will send You my picture attach,
Email for response [email protected]
thank you
.
are You OK?
I am solitary juicy Chick from Kazakhstan;-) For now I'm searching for well =
buddy;) I'm going to send You my photo attached)
response me to: [email protected];-)
Thank you
.
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Mon, Apr 18, 2022 at 2:47 AM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Mon, Apr 11, 2022 at 2:18 AM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Mon, Apr 4, 2022 at 1:27 AM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Mon, Mar 28, 2022 at 1:10 AM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
my Mr. curious:)
At present Im look up superior dude;-) I'm lonely astonishing chick:) My ema=
il for answer [email protected] I'll reply to You my photo attached. Tha=
nk you
.
How r you doing?
Immediately Im waiting for smart male! I am solitary unspoiled person from K=
azakhstan! I will send You my photo;-)
My E-mail box for response is: [email protected]!
Thank you
.
hi bang-up!
Today Im looking for appetising male;)
Im adequate female born in Kazakhstan
email to me [email protected]:)
I'll reply to You my photo attach;-)
.
Good Evening my propitious:)
I hope you are able to dandy chat:-)
can You please do me a favor
immediately I'm look up single mister;-) I'm superlative Mistress living in =
Kazakhstan:-) reply me: [email protected];) I will send You my ph=
otos:) Till next time
.
Greeting correct)
My vigorous my utstanding, Im real Girlfiend today Im searching for creditab=
le gentleman from United States of America)
What State are You from? I can reply to You my photo attached.
It's my email for reply is [email protected]:) Bye
.
Ripe;)
immediately I am trying to find correct male:) I'm going to send You my pict=
ures;-) this is email box for response: [email protected] talk to you la=
ter
.
My careful mr. useful:-)
may you please small talk with me? May be you're able to ugliest small talk=
Righ now Im look up jolly buddy)
I will reply to You my photo, Email for reply [email protected],
Thank you anyway
.
mister Lively.
Hello vivid!
are You with me?
Let's try to talk;)
Now Im waiting for unsurpassed gentleman) I can send You my photo attach
My e-mail box for reply is: [email protected];)
talk to you later
.
Greeting My.
I hope you can requisite talks Presently Im searching for unsurpassable gent=
leman:) Im awesome babe,
I can reply to You my picture!
E-mail for answer is [email protected];-) talk to you later
.
good day My clear;-) I want to curly chat;-)
Im kindly person from Kazakhstan,
At this moment I am looking for delicious male:)
Reply me: [email protected]:-) I can reply to You my photo atta=
ch bye
.
today Im trying to find superb dude;)
It's e-mail box for reply is [email protected])
I'm going to send You my picture attached! Good bye
.
How is your real name?
Let's try to small talk:)
for now Im looking for competent mister) I am wonderful woman from Kazakhsta=
n. e-mail to me at [email protected]!
I can reply to You my photos)
bye
.
my champion Mister cuddles:)
could you freshwater speak?
Currently I'm looking for kind guy!
I'll reply to You my photos:)
This is e-mail box for answer [email protected];)
have a nice day
.
good day my suitable.
presently I am look up choice mister!
I am lonely adorable Girl born in Kazakhstan,
I'm going to reply to You my photo attach;-)
My email box for response is [email protected].
.
My blameless perfectible;-)
good day my
At present Im look up righteous mister:) I'm wholesome babe)
I'll send You my photo. this is email box for contact is: gustavehow1@gmail.=
com:)
Till next time
.
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Mon, Apr 25, 2022 at 1:03 AM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Mon, Apr 18, 2022 at 2:47 AM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Mon, Apr 11, 2022 at 2:18 AM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Mon, Apr 4, 2022 at 1:27 AM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Mon, Mar 28, 2022 at 1:10 AM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
Hello my bold. how do You like it here? Let's try to nice speak;)
At this moment I'm searching for indispensable mister;)
I will reply to You my pictures!
it's my E-mail box for contact is: [email protected]
thank's
.
Hello my;) Let's try to crown chat)
What are you doing? at this moment I'm seeking splendid male
I'll send You my picture attach;) Email to me at [email protected])
Have a good time
.
serious mister top-grade;-) can we talk? Soon I am look up beneficent gentl=
eman:) I can send You my photo attached;-)
this is e-mail [email protected]:-)
Thank you in advance
.
Greeting My)
Let's try to speak)
Is it a standard evening? I am unmarried moral babe in Kazakhstan,
Immediately I am seeking kindly buddy,
I'll reply to You my photo attached;) my email is: [email protected])
.
Hey My beneficial;-)
can you please rigid answer;-) I'm alone intelligent person in Kazakhstan)
righ now I'm look up cute dude)
I'll send You my picture.
My E-mail for contact [email protected].
have a good day
.
Good Evening My)
Mister neat,
Let's try to worrisome chat How so?
At present I'm seeking stylish mister,
I am nice miss born in Kazakhstan Email to [email protected]) I can send =
You my photo attached
.
My ineffect sir Lady Killer:-)
good day my!
You can call me Zhuldyz.
I am class person from Kazakhstan;) righ now I am looking for propitious man=
:) This is E-mail for contact is [email protected];-)
I can send You my picture attached:-)
.
my mister generous;) May you're free to unblemished chat;-)
for now I'm trying to find sound man,
I am adventurous Miss, I'll send You my photo attached) email at farrellybur=
[email protected]:)
good bye
.
My vivid Incomparable:) Could you please answer me?
Let's try to precise talk
For now I am searching for benign guy:-)
Im single remarkable Lady born in Kazakhstan. My E-mail for answer is: yer33=
[email protected];-) I can reply to You my picture attach) Good bye
.
Let's try to klutzy small talk.
At present I'm waiting for astonishing man;)
I am going to send You my photo attached,
Write to me at [email protected].
Thank you anyway
.
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
my brainy) I'm lonely bang-up woman:-) Now I am looking for precious man fro=
m USA) What State are you from?
I'm going to send You my photo attach:-)
response to: [email protected].
.
Want to write me?
I'm solitary likable Lady)
Now I am look up tender buddy
I am going to send You my photo attached;)
this is my e-mail for reply [email protected]
Good luck!
.
opportune sir Angel) Greeting successful!
Im solitary real person,
Today I'm waiting for smart guy from United States;-)
What State are you from?
I can reply to You my photo attach,
Reply me at [email protected];-)
have a good day
.
Good Evening my no.1;)
Let's try to adequate chat I'm cool Female,
righ now I'm trying to find angelical dude from United States of America, Wh=
at State are You from?
E-mail for reply is [email protected] I'll reply to You my photo attac=
hed:-)
.
hi clear;) sir sweetheart:)
Im smart person) Currently Im trying to find advisable dude:-) Reply me to: =
[email protected],
I can reply to You my photo attached talk to you later
.
Mr. Aaron
Thanks for your mail and I want to explain everything to your understanding, why I demanded for your information.
I name the subject TRUST!! because we need to trust each other and that information is to be kept among ourselves and for security purposes.
Now you can check my website on www.mzlchambers.online and you can read more about me.
The fund in question was not acquired from Corruption and is not money laundering or from illegal sales neither it is acquired from Arms sales, the fund is genuine.
Am a lawyer and I know the process and I can guarantee you 100% assurance with this. I am also well known here in Europe and therefore can not tanish my name for fake business ( illegal money). This is to inform you that all business is genuine and legal.
Now concerning the percentage ratio: 45% for me, 45% for yourself and 10% for Charity because in everything we still need Charity to help the poor for the gift God has provided for us.
So if you can now be confined to me, then i will prepare an Application letter for you to send to the bank for onward processing.
Regards
--
Barrister Matthias ZansenMZL CHAMBERSVienna, [email protected]
www.mzlchambers.online
my unparalleled Mister Great)
I hope You're cardinal:)
I am single astonishing girlfiend:-) Today I am waiting for serious male fro=
m United States.
What State are U from?
I'll reply to You my picture,
it's my E-mail box for contact is: [email protected]:-)
.
I wish to speak,
I'm nonpareil Lady:-)
today Im seeking groovy man from USA;-) What State are You from?
I am going to send You my picture:)
this is my email box for reply [email protected]! good bye
.
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Mon, May 9, 2022 at 7:00 AM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
Hello my:)=0A=
my Mister Pumpkin:)=0A=
I hope You are able to unskilled speak!=0A=
=0A=
May you please do me a favor!=0A=
=0A=
I am loose mistress;-) At this moment Im seeking appetizing guy from USA;) =
W=3Dat State are U from? I'll reply to You my pictures;)=0A=
This is my E-mail box for response is: [email protected]:-)
.
my holy my sweetie, What r you doing? Let's try to talks) Im immaculate Pers=
on,
for now I'm trying to find humane gentleman from United States. What State a=
re You from?
I can send You my picture attached;) response to me: [email protected]=
;)
.
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 16, 2022 at 12:21 PM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Mon, May 9, 2022 at 7:00 AM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
opportune My Reliable;-)
May be you are able to chat)
Where do U live now? soon I am searching for single dude! Im alone splendid =
35 y.o. Mistress from Kazakhstan.
I'm going to send You my photo attach;)
this is my e-mail box [email protected];)
.
Good Day, breezy Vigorous.
Let's warm talk;) Is it a one-off day today? soon I'm trying to find warm bu=
ddy,
I'm going to send You my photo attach.
email to me: [email protected].
Have a good day
.
I want to perfect talk:)
I'm excellent Chick;-)
At present Im trying to find alive male;-) it's Email for response is: marti=
[email protected];)
I'll reply to You my pictures) Till next time
.
Currently Im look up fair man)
response me at [email protected];)
I am going to send You my photo attached;)
Have a good day
.
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 23, 2022 at 12:09 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 16, 2022 at 12:21 PM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Mon, May 9, 2022 at 7:00 AM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
good morning My:-)
Hope everything is nervous:) now Im looking for goodygoody guy from United S=
tates of America. What State are you from?
Im cool Mistress) I will reply to You my photo attached;)
it's E-mail box for contact is [email protected]!
.
good morning My loose.
My My admirable) how was it?
Im solitary dependable miss:-)
immediately I am looking for humane guy from USA. What State are you from? I=
am going to send You my photo attach)
it's my Email box [email protected]!
.
Im clean Babe.
Now I'm looking for attractive gentleman from US;-)
What State are you from?
reply at: [email protected] I will send You my picture attach;) talk t=
o you later
.
my clever Mr. adventurous! Righ now I am look up natural guy from US!
What State are You from?
I'm alone class girl! I am going to send You my photos;-)
response me at [email protected]:)
.
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 30, 2022 at 11:00 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 23, 2022 at 12:09 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 16, 2022 at 12:21 PM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Mon, May 9, 2022 at 7:00 AM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
my mr. able;-)
hey my:-) I hope You can rotten talks I am very earnest;)
immediately I am waiting for righteous buddy:) Im ordinary mistress in Irela=
nd;) Email me to: [email protected];-) I'm going to reply to You my=
pictures;-)
.
my Unparalleled!
I hope you are free to zealous speak:-)
I am generous Lady) soon Im looking for thankful dude from US;-) What State =
are U from? e-mail to: [email protected])
I'm going to reply to You my photo attach;-)
Have a nice time
.
Do You wish to try me? Let's try to speak:) today I am seeking attractive bu=
ddy from US;-)
What State are you from?
I'm lonely modish woman:-) I can send You my picture;-)
it's my E-mail box for answer [email protected]:-) Have a good da=
y
.
Let's try to small talk Can I ask a question? Im shining female.
Immediately I'm searching for friendly male from US.
What State are you from?
Response to me at [email protected] I can reply to You my photo a=
ttached)
.
my valuable sir curvy:) how so? I am honest Female, For now I am waiting for=
astonishing gentleman from United States of America, What State are you fro=
m?
It's email for response is: [email protected];-) I'll reply to Yo=
u my photo attached:)
Bye
.
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 6, 2022 at 12:58 PM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 30, 2022 at 11:00 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 23, 2022 at 12:09 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 16, 2022 at 12:21 PM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Mon, May 9, 2022 at 7:00 AM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
My cute sweetie Pie, Hello:)
do wish to meet me?
I want to powerful talk,
I am nice mistress staying in Ireland
At present I'm look up delicious buddy!
it's my Email box for answer is [email protected]:-) I will reply to Y=
ou my picture attach.
.
Hello;)
My Mister goodygoody! Let's skilled talks)
At this moment I am look up blameless gentleman;) Im single utstanding woman=
:-)
I will send You my picture attach;) It's my E-mail box for reply is: lewmcco=
[email protected]:) Have a good day
.
my splendid Mister Interest;-)
Hope You are remarkable;)
I am kindhearted miss, Presently I am looking for openhearted buddy) This is=
E-mail box for reply [email protected]
I can reply to You my photos,
have a nice day
.
Good Evening generous
My sir respectable) Let's agreeable talk!
Call me Darya
for now Im waiting for invaluable buddy)
I'll send You my photo attach:)
My Email for response is: [email protected],
till next time
.
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 13, 2022 at 7:35 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 6, 2022 at 12:58 PM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 30, 2022 at 11:00 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 23, 2022 at 12:09 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 16, 2022 at 12:21 PM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Mon, May 9, 2022 at 7:00 AM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
hi my openhearted!
I hope everything new-made! immediately I am searching for top buddy! Im sin=
gle calm chick from Ireland)
response to me [email protected];)
I will reply to You my picture attach:)
.
I'm propitious Woman from Ireland:) At this moment Im searching for worthy m=
an;-)
it's my e-mail for response: [email protected]:-)
I will reply to You my photo;-)
.
May you're able to goodly speak;) I am thankful girl born in Ireland!
Now Im seeking yummy male.
I am going to reply to You my photo write to me: [email protected]:-)
.
My calm Mister Unspoiled) hi desirable.=0A=
Im unequalled Lady!=0A=
righ now I am waiting for top-grade buddy, E-mail to me anastasiiakalu@outl=
o=3Dk.com!=0A=
I'll send You my photos:)=0A=
=0A=
Thank you in advance
.
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 20, 2022 at 12:12 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 13, 2022 at 7:35 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 6, 2022 at 12:58 PM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 30, 2022 at 11:00 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 23, 2022 at 12:09 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 16, 2022 at 12:21 PM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Mon, May 9, 2022 at 7:00 AM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
My intellectual Mister bright;)
Im dependable Mistress in Ireland)
Righ now I am seeking goodness buddy;-) I am going to reply to You my pictur=
e;)
this is my e-mail box for contact: [email protected].
.
soon I am seeking worthy gentleman, I'm polite Woman,
I'm going to send You my picture attach!
Write to [email protected]) thank you in advance
.
Greeting My:) may You please chat with me? currently Im trying to find unbl=
emished dude! I am lonely thankful Woman from Ireland;-) I will reply to You=
my photo!
email to: [email protected].
.
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 27, 2022 at 12:07 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 20, 2022 at 12:12 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 13, 2022 at 7:35 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 6, 2022 at 12:58 PM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 30, 2022 at 11:00 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 23, 2022 at 12:09 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 16, 2022 at 12:21 PM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Mon, May 9, 2022 at 7:00 AM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
hey My,
My Mister cute! Are You here?
At present Im waiting for rreproachable dude;) I'm going to send You my phot=
o attach. It's my email for answer is [email protected]
Thank you in advance
.
Hi My;)
I am lonely top-quality miss;)
At this moment I am searching for notbad man;-)
it's my email box: [email protected].
I'm going to send You my photos!
Thank you anyway
.
good day remarkable;)
now Im searching for perfectible mister;-)
Reply to me [email protected]) I am going to send You my photo=
;-)
thank you
.
perfective Sir Shining;) good morning My,
I wish to fumbling small talk!
At present Im looking for dependable gentleman! E-mail me to: Anastasiyauhta=
@outlook.com
I can send You my picture attach!
Thank you in advance
.
I am juicy chick) Currently I'm look up crack buddy:) I can reply to You my =
photo attached;-)
This is E-mail for contact is: [email protected]:)
thank's
.
my beneficent Mister Prince Charming!
at this moment Im seeking thoughtful man
Im unmarried appetising miss living in Ireland,
I will send You my picture:-) Reply to [email protected];-)
have a nice day
.
best Mr. right
Hi;) Are You with me?
Today I am seeking adequate man.
I am single curvy miss:-) I will send You my picture attached:) email to me:=
[email protected].
Good bye
.
good morning my jolly)
Let's try to small talk:)
I am serious:) Righ now I am trying to find upright mister. I am unmatched g=
irlfiend)
Write to me at [email protected]:-)
I will reply to You my photo,
Have a good time
.
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jul 4, 2022 at 1:08 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 27, 2022 at 12:07 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 20, 2022 at 12:12 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 13, 2022 at 7:35 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 6, 2022 at 12:58 PM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 30, 2022 at 11:00 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 23, 2022 at 12:09 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 16, 2022 at 12:21 PM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Mon, May 9, 2022 at 7:00 AM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
Call me Christine,
Presently I'm waiting for able guy)
I'm unmarried uncomparable Miss staying in Ireland! E-mail box for answer is=
[email protected] I'm going to reply to You my photo attached! Thank y=
ou in advance
.
hey my openhearted)
I want to virgin speak righ now Im searching for safe mister:-) I'm unmarrie=
d delicious babe;) reply to me at: [email protected] I'll =
reply to You my photo attach!
Talk to you later
.
Hi My creditable;)
Let's talk;-)
Im natural woman)
Currently I'm trying to find clever gentleman;)
I can send You my photo attach, Reply at: [email protected]:-)
Have a good day
.
May be You're free to speak!
I'm unmarried alive female
Currently I'm searching for precious male!
I am going to reply to You my pictures:-)
this is my e-mail box for answer [email protected]
till next time
.
my my Pricey;-) may I ask a question?
Im remarkable Woman;) at present I am seeking honorable buddy from United St=
ates of America,
What State are You from? Email to me [email protected];-)
I'll reply to You my pictures:-)
Have a good time
.
my benign my absolute!
Hope you r decorous;-)
Now Im seeking unequaled dude!
I am going to reply to You my photo,
E-mail at [email protected]!
talk to you later
.
I'm single honourable woman:) Presently I'm seeking better man:)
Reply to [email protected]:)
I'll reply to You my picture attached;)
thank's
.
pleasing my warm)=0A=
Good Morning;)=0A=
=0A=
I am so serious.=0A=
=0A=
currently I'm seeking delectable male) I'm desirable woman from Ukraine,=0A=
I can reply to You my photos! e-mail me to: [email protected]=
=0A=
have a nice time
.
my mister careful.
It's a saintly day, I want to average chat!
righ now Im looking for beneficial mister from USA)
What State are you from?
I am alone promising Female:)
I will send You my photo attach:) it's my Email box for contact is: dolphcai=
[email protected]:)
.
Let's try to wrong talk;) I'm matchless miss living in Ukraine
Presently I'm seeking satisfactory buddy)
e-mail me to: [email protected];-) I will send You my photo att=
ached!
Good bye
.
How come? presently I'm seeking precious mister:-)
Im utstanding female,
I am going to reply to You my pictures:)
e-mail to me at [email protected])
Have a nice day
.
Hey my;-) My attractive my bright,
Im single neat person, presently I am look up joyous male from United State=
s=3Df America;-)
What State are U from?
Write to me at [email protected],
I am going to reply to You my photo attached
DISCLAIMER: All the information contained in this email message is strictly=
confidential and may be legally privileged. Such information is intended e=
xclusively for the use of the designated recipient(s). Any disclosure, copy=
ing or distribution of all or part of the information contained herein or o=
ther use of or the taking of any action in reliance upon this information b=
y third parties is prohibited and may be unlawful. If you have received thi=
s email message in error please delete it immediately and notify the univer=
sity through email at [email protected]<mailto:[email protected]>
________________________________
.
adequate) Good Day My top-quality;-) I hope You can crazy talks:-)
I'm unmarried awesome Female)
soon Im searching for likable male. My E-mail for contact is: freeaizhmankfl=
[email protected]:-)
I'm going to reply to You my picture attach;)
talk to you later
.
My name is Aizhan;-)
for now I'm waiting for select male. Reply to me: hiasdfnjmankeyeva35@outloo=
k.com I'm going to reply to You my picture.
have a nice time
.
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jul 11, 2022 at 12:42 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jul 4, 2022 at 1:08 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 27, 2022 at 12:07 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 20, 2022 at 12:12 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 13, 2022 at 7:35 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 6, 2022 at 12:58 PM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 30, 2022 at 11:00 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 23, 2022 at 12:09 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 16, 2022 at 12:21 PM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Mon, May 9, 2022 at 7:00 AM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
I hope You are able to unexampled talk!
for now I am searching for ideal dude;)
I'm honorable lady! I can send You my pictures)
this is E-mail box is [email protected].
Have a nice day
.
Hi My;)
Let's lucky chat)
Now Im trying to find best man)
It's e-mail box for reply: [email protected];-) I am going to send You=
my photo attached. till next time
.
for now I am seeking honourable guy from US) What State are u from?
I am single goodnatured female! I'm going to send You my photo attached:-)
Email me to: [email protected];-)
.
Good Morning My:) Are You ok?
Soon Im trying to find advisable male from US;) What State are you from? I'm=
open Babe I can send You my pictures. it's my Email sandersoncampy542@gmai=
l.com
.
mr. groovy;-)
Hello savory;) Is it a record evening today?
at present I am looking for modern gentleman from USA What State are U from?=
Im unmarried astonishing Babe this is e-mail box for answer: sandersoncampy=
[email protected], I can reply to You my photo;)
Bye
.
my sound Mister Angel,
I want to impossible chat) hope it is long!
Im better Miss now I'm searching for limpid mister.
This is E-mail box for reply [email protected].
I'll send You my photos)
Thank you anyway
.
My serviceable sir Perfective!
good evening) I'm solitary honourable chick;) At this moment Im searching fo=
r dependable buddy from United States of America,
What State are You from?
I'm going to reply to You my picture attached:-) Reply to: sandersoncampy542=
@gmail.com;)
thank you
.
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jul 18, 2022 at 12:06 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jul 11, 2022 at 12:42 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jul 4, 2022 at 1:08 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 27, 2022 at 12:07 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 20, 2022 at 12:12 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 13, 2022 at 7:35 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 6, 2022 at 12:58 PM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 30, 2022 at 11:00 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 23, 2022 at 12:09 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 16, 2022 at 12:21 PM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Mon, May 9, 2022 at 7:00 AM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
Good Morning My auspicious!
Let's try to triumph talks.
Currently Im waiting for sweet man,
I'm lonely gracious Lady.
Email me: [email protected];) I will reply to You my photo attach;)
thank's
.
may I ask you a question? I'm perfective mistress,
immediately Im seeking pleasant buddy from United States:)
What State are you from?
Write to me at: [email protected])
I'm going to send You my pictures;-)
.
gracious Sir yummy;)
How do you like it? Presently I'm looking for shining guy:)
I'm careful female)
I will reply to You my photo! Write me [email protected];-)
thank's
.
Hey My,
My competent my alive,
immediately Im trying to find goodnatured gentleman:)
I'm blameless Girlfiend staying in Kazakhstan.
my e-mail for response is [email protected]
I'll send You my photo attached
.
hi my sound. May I ask? I hope you can talks;-)
I am inimitable Woman!
today I am waiting for propitious mister from United States of America!
What State are You from?
I'm going to reply to You my picture attach
it's E-mail for response [email protected].
.
My uncomparable sir hunny;-)
can we small talk?
Im beatific Person!
Soon I'm waiting for goodly male from United States. What State are You from=
?
I will reply to You my photo:-)
response me at [email protected];-)
Have a good time
.
hello smart;-) I hope You're free to speak;-) I am solitary angelic Girlfien=
d from Kazakhstan,
At present I'm waiting for blameless buddy!
Email to me: [email protected],
I will send You my picture.
.
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jul 25, 2022 at 12:12 PM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jul 18, 2022 at 12:06 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jul 11, 2022 at 12:42 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jul 4, 2022 at 1:08 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 27, 2022 at 12:07 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 20, 2022 at 12:12 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 13, 2022 at 7:35 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 6, 2022 at 12:58 PM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 30, 2022 at 11:00 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 23, 2022 at 12:09 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 16, 2022 at 12:21 PM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Mon, May 9, 2022 at 7:00 AM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
Hi My unsurpassable;-)
careful sir Capable;-)
May be you're free to healthful small talk;-)
righ now I am waiting for tender man:)
I am going to reply to You my pictures:-)
This is E-mail box for answer is: [email protected];-)
good luck!
.
Let's chat;-)
can you speak with me:)
Im useful Chick.
Immediately I'm looking for adroit guy from United States:)
What State are you from?
I'll reply to You my pictures!
It's my E-mail for answer is [email protected];) Thank you
.
What is your age?
I am earnest.
Where do You live right now?
I am cute babe living in Kazakhstan;-)
Soon I am look up sound dude! Write to [email protected];)
I'm going to send You my photo attach;)
thank's
.
May You're able to milky chat:-)
immediately I'm seeking unsurpassable gentleman. I'm lonely shining Girl bor=
n in Ireland
I will reply to You my photo attach:)
email at: [email protected],
.
Good Day my neat;-) what is your age? Where r U right now? I need to talk)
Currently I'm searching for adequate buddy:-)
I'm noble babe from Kazakhstan! I'm going to send You my pictures,
my e-mail: [email protected]:-)
.
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Aug 1, 2022 at 11:33 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jul 25, 2022 at 12:12 PM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jul 18, 2022 at 12:06 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jul 11, 2022 at 12:42 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jul 4, 2022 at 1:08 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 27, 2022 at 12:07 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 20, 2022 at 12:12 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 13, 2022 at 7:35 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 6, 2022 at 12:58 PM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 30, 2022 at 11:00 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 23, 2022 at 12:09 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 16, 2022 at 12:21 PM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Mon, May 9, 2022 at 7:00 AM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
Greeting;)
my sir valuable!
Where r You from?
I want to speak)
What is your age?
Now I'm searching for juicy mister,
Im astonishing girlfiend staying in Kazakhstan) I will reply to You my pictures:-)
my Email is [email protected];)
O`zbekiston Respublikasi Prezident ta`lim muassasalari agentligiManzil: 100170, O`zbekiston, Toshkent shahri, Yashnabod tumani Mahtumquli ko'chasi.Website: https://piima.uzTel.: +998 (71) 207-20-17Email: [email protected]
My Mister Praiseworthy,
can you please speak with me
Currently Im waiting for choice man from USA! What State are U from?
I am solitary benign Female!
my email for response is: [email protected] I'm going to reply to You m=
y picture attached!
.
I wish to talk:) How is your name? I am generous Chick living in Ireland, Ri=
gh now I am looking for cuddly mister)
I'm going to reply to You my picture attached)
write to me at [email protected]:)
till next time
.
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Aug 8, 2022 at 12:19 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Aug 1, 2022 at 11:33 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jul 25, 2022 at 12:12 PM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jul 18, 2022 at 12:06 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jul 11, 2022 at 12:42 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jul 4, 2022 at 1:08 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 27, 2022 at 12:07 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 20, 2022 at 12:12 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 13, 2022 at 7:35 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, Jun 6, 2022 at 12:58 PM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 30, 2022 at 11:00 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 23, 2022 at 12:09 AM james official <[email protected]> wrote:
Hello,
Hope you are doing well
Is there any update?
Waiting to hear from you.
Hoping to receive a bounty for my efforts.
Kind regards...
On Mon, May 16, 2022 at 12:21 PM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Mon, May 9, 2022 at 7:00 AM james official <[email protected]> wrote:
Happy Monday
I Hope you are doing well
Is there any update ?
Waiting for your reply
Hoping to receive a bounty for my efforts
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
my mr. kindhearted:) how come?
today I'm seeking unspoilt guy. I'm utstanding 36 y.o. girlfiend:) It's emai=
l box for response [email protected]! I'll reply to You my picture, Talk=
to you later
.
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Sun, Aug 21, 2022 at 11:58 PM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
Im appetising person
At this moment Im look up rreproachable buddy from United States of America;=
-) What State are You from?
Write me: [email protected] I'm going to reply to You my photo attached=
.
My Sir dear)
Hey my valuable:-)
soon I'm trying to find openhearted gentleman from United States;-) What Sta=
te are u from? I am alone wonderful mistress;)
this is my email for response is [email protected]
I will send You my picture;-)
.
my clear honey.
I'm honourable Chick born in Ireland:) Soon Im waiting for gorgeous male.
write me at [email protected]
I am going to send You my photo! Thank's
.
Hello!
How're you?
For now I'm waiting for pure buddy.
It's my e-mail for response is: [email protected]:)
I'm going to send You my picture attached. Thank you
.
my My ineffect,
hi my brainy
I hope You are able to chat:-) Im alone peerless Woman in Ireland!
Today Im seeking special mister:-) I'll send You my photo! my email box for =
contact is: [email protected];)
.
My tender Sir Pricey!
I wish to newwest speak:-)
I'm pleasant Babe;-)
Soon I am look up alive dude from USA;-) What State are you from? Reply to m=
e at: [email protected] ;-)
I'll reply to You my photos,
bye
.
Hey my oneandonly!
I want to go-to-meeting speak!
How is it going? I am unmarried courageous Girlfiend, At this moment I am tr=
ying to find caring male,
This is E-mail box for reply is: [email protected], I'm going to send =
You my picture attach! Thank's
.
Good Day my tidy;-)
my Sir Sweetie
May you're able to speak
immediately I'm look up impeccable gentleman)
I'll send You my photos) response at: [email protected]!
have a nice day
.
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Aug 29, 2022 at 12:11 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Sun, Aug 21, 2022 at 11:58 PM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
hey:) my polite sir Babe
I'm alone neat babe staying in Ireland;)
Presently Im trying to find desirable man;-)
E-mail me at: [email protected];)
I'm going to send You my photo:-)
.
Good Evening My;) my Sir Tender. Let's try to angelic talks
I am superb chick in Ireland! currently Im look up champion buddy)
This is E-mail for response is: [email protected]!
I will reply to You my photo
.
Hello serious;-)
For now I am seeking angelic buddy:-) I am going to reply to You my picture =
attach Email to me at: [email protected]:) Have a nice time
.
Good Morning My;-) Im champion Babe!
Today I am trying to find select guy
it's my Email box for response is [email protected];-)
I will send You my picture attach)
Have a nice time
.
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 5, 2022 at 1:22 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Aug 29, 2022 at 12:11 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Sun, Aug 21, 2022 at 11:58 PM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
I hope You can small talk;)
I'm lonely immaculate Girl:-)
righ now I'm trying to find curious dude.
Email for response is: [email protected]:)
I will send You my picture attach;-) thank you in advance
.
for now I'm looking for no.1 buddy:)
Reply me [email protected] )
I will reply to You my picture attach)
Till next time
.
hello my perfect:)
My Sir bland)
How is mood? May be You're free to frantic small talk.
now I'm look up unequaled gentleman. it's Email box for response Aigerim-sun=
@outlook.com:-) I can reply to You my photo attached, thank's
.
May You please pricey tell?
Let's try to scrumptious talks Im lonely interest Lady born in Ireland:) rig=
h now Im trying to find adorable man
My E-mail box [email protected]. I am going to send You my pictures=
;-)
.
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 12, 2022 at 8:31 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 5, 2022 at 1:22 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Aug 29, 2022 at 12:11 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Sun, Aug 21, 2022 at 11:58 PM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
my sir Lively:-) For now I am look up curious guy from United States of Amer=
ica) What State are you from?
I am solitary reliable Girlfiend:-) e-mail at: [email protected])
I will send You my photo attached,
.
hi My humane,
My mr. sound,
Let's benevolent speak
hope you're arrant)
I'm angelical female;-)
Presently Im looking for uncomparable dude:)
I can send You my pictures!
It's E-mail box for contact: [email protected]
Have a good time
.
Let's horrible speak;-)
at present I am waiting for dependable male.
Im single truthful Lady;-)
I am going to reply to You my photo attach:)
e-mail box is [email protected]:-)
thank you in advance
.
my honorable My cupcake:-) how're you? For now I am trying to find tidy dude=
from United States of America
What State are You from? I'm lonely magnificent 32 y.o. miss from Kazakhstan=
:)
I can reply to You my photo:-) e-mail me at: [email protected]:)
.
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 19, 2022 at 10:54 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 12, 2022 at 8:31 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 5, 2022 at 1:22 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Aug 29, 2022 at 12:11 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Sun, Aug 21, 2022 at 11:58 PM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
Hi,
I would
like to confirm that, you received my last email or not.
The
reason for asking is that I didn't get any response back from you.
So please let me know, are you
interested.
Thanks
& Regards,
From: Deepa
Singh
To: '[email protected]'
Sent: Monday, August 29, 2022 4:31 PM
Subject: # SEO Quote ..........
Hello,
We are from India. Increase revenue & grow your business.
Off page and on page optimization to grow your business
Let me know if you are
interested, then I can send you our SEO Packages and Price list.
I am
waiting for your response.
Thanks,
Deepa Singh
my serviceable advantageous.
Greeting my:)
Let's try to matchless talks,
hope everything stark,
I am advisable Babe in Kyrgyzstan! Now I'm waiting for normal mister:-)
I can reply to You my photos;) response me to: [email protected];-=
)
.
my Mr. jolly;-)
Let's try to deluxe speak! today I'm looking for warm man.
I can reply to You my photos
This is E-mail for response is: [email protected]:-) have a good=
day
.
Greeting goodnatured:)
Let's try to big speak;-)
immediately I am look up modish guy;-)
response to [email protected]:)
I'll reply to You my picture
Have a good day
.
my right My zeus
How're You?
soon I am trying to find clean mister:)
Im nonsuch woman;)
Reply me at [email protected])
I will reply to You my picture attached;-)
have a nice day
.
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 26, 2022 at 11:17 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 19, 2022 at 10:54 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 12, 2022 at 8:31 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 5, 2022 at 1:22 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Aug 29, 2022 at 12:11 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Sun, Aug 21, 2022 at 11:58 PM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
My angelic my Goodhearted;-)
I hope You can chat;)
at present I'm look up valid mister:) it's my email for contact is: AliyaKZ8=
[email protected].
I am going to send You my photo attach) Till next time
.
good day my today I am seeking bold buddy:-) It's my Email for contact is Al=
[email protected];)
I am going to send You my photos
good bye
.
hello dependable!
My advantageous sir Limpid)
Today Im searching for loving guy;-)
I can reply to You my picture attach:-)
e-mail at: [email protected]. Good luck!
.
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Oct 3, 2022 at 11:05 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 26, 2022 at 11:17 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 19, 2022 at 10:54 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 12, 2022 at 8:31 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 5, 2022 at 1:22 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Aug 29, 2022 at 12:11 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Sun, Aug 21, 2022 at 11:58 PM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
Greeting my!
My my fair,
I hope You can speak,
At present Im looking for unspoiled dude! I'll send You my picture attached:=
-)
it's my E-mail for answer [email protected]!
have a nice day
.
my enjoyable Mister respectable, How r things now?
I'm modern Female in Kyrgyzstan;)
now Im looking for delicious man.
I'll reply to You my pictures!
It's Email box for contact [email protected] !
.
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Oct 10, 2022 at 1:57 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Oct 3, 2022 at 11:05 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 26, 2022 at 11:17 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 19, 2022 at 10:54 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 12, 2022 at 8:31 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 5, 2022 at 1:22 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Aug 29, 2022 at 12:11 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Sun, Aug 21, 2022 at 11:58 PM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
hope You r busy;)
I hope you can small talk.
Currently I'm seeking shiny dude:)
I am praiseworthy woman living in Ireland)
My email for reply is [email protected];-)
I can send You my picture attach:)
.
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Oct 17, 2022 at 2:41 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Oct 10, 2022 at 1:57 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Oct 3, 2022 at 11:05 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 26, 2022 at 11:17 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 19, 2022 at 10:54 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 12, 2022 at 8:31 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 5, 2022 at 1:22 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Aug 29, 2022 at 12:11 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Sun, Aug 21, 2022 at 11:58 PM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
My cool My Reliable! I hope You can greedy talk:) I am useful person living =
in Ireland)
At present I'm seeking tidy mister;)
email me: [email protected]:-)
I'll send You my pictures;)
.
my sir adventurous good evening My,
What're you missing?
Im tidy Female!
Currently I'm searching for well-disposed man;-) e-mail at herpsbernhard16@g=
mail.com ;-) I am going to send You my photo attached;-)
bye
.
hello;-)
For now Im trying to find goodnatured gentleman;-)
I'll send You my photos
my e-mail box for reply is [email protected],
Have a good day
.
Sir Dear
I am single priceless lady! For now I am seeking respectable dude from Unite=
d States:-) What State are u from?
This is my E-mail box [email protected]. I can reply to You my picture a=
ttach have a nice time
.
Mister Savory;-)
It's Yana;) righ now I'm searching for goodygoody mister, Im dependable Pers=
on,
I'll reply to You my pictures;)
This is my e-mail box for reply [email protected]
Have a nice time
.
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Oct 24, 2022 at 11:34 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Oct 17, 2022 at 2:41 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Oct 10, 2022 at 1:57 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Oct 3, 2022 at 11:05 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 26, 2022 at 11:17 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 19, 2022 at 10:54 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 12, 2022 at 8:31 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 5, 2022 at 1:22 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Aug 29, 2022 at 12:11 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Sun, Aug 21, 2022 at 11:58 PM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
my moral Sir top-grade Let's talks. how do You like it? I'm lonely friendly =
woman;-)
Righ now Im waiting for scrumptious buddy,
Email to me [email protected] ;-)
I'm going to send You my photos;-)
Good bye
.
Hi;-) My great my trustworthy:) Call me Tatyana:-)
Where are U stay?
now I'm look up precise male!
I am alone gentle 32 yo babe living in Kazakhstan:)
e-mail to me at: [email protected] :-)
I will reply to You my photo:-)
.
Now I'm look up uncomparable gentleman!
I am lonely perfect chick:-) I will reply to You my picture attached:) reply=
at: [email protected] ,
Talk to you later
.
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Tue, Nov 1, 2022 at 4:25 PM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Oct 24, 2022 at 11:34 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Oct 17, 2022 at 2:41 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Oct 10, 2022 at 1:57 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Oct 3, 2022 at 11:05 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 26, 2022 at 11:17 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 19, 2022 at 10:54 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 12, 2022 at 8:31 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 5, 2022 at 1:22 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Aug 29, 2022 at 12:11 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Sun, Aug 21, 2022 at 11:58 PM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
Good Morning My corking;)
mister Unequaled;-) Let's talks;)
now I'm waiting for beneficial guy;-)
I am crisp Mistress
I can reply to You my photo,
email at: [email protected] ;-)
have a nice day
.
may we speak? I am alone bold mistress born in Russian Federation;-)
Immediately I'm searching for goodly gentleman:-)
It's Email [email protected] :-)
I'll send You my picture attached;)
.
Now I am searching for inimitable dude,
E-mail to: [email protected] :) I'm going to send You my photo!
Have a nice day
.
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Nov 7, 2022 at 3:19 PM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Tue, Nov 1, 2022 at 4:25 PM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Oct 24, 2022 at 11:34 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Oct 17, 2022 at 2:41 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Oct 10, 2022 at 1:57 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Oct 3, 2022 at 11:05 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 26, 2022 at 11:17 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 19, 2022 at 10:54 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 12, 2022 at 8:31 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Sep 5, 2022 at 1:22 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Mon, Aug 29, 2022 at 12:11 AM james official <[email protected]> wrote:
Hello
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Sun, Aug 21, 2022 at 11:58 PM james official <[email protected]> wrote:
Happy Monday
Hope you are doing well.
Hope you got an update for me ?
Waiting for your reply and expecting a bounty for my work
Kind regards
On Wed, Dec 29, 2021 at 1:54 PM Ashley Clark <[email protected]> wrote:
Hello,
I talked to my colleagues about this but they seemed to have some apprehensions; namely, they're worried that the offer isn't fleshed out enough. Would you be able to go into more detail about exactly how this would be structured?
Ashley Clark
CEO, MNesty, LLC
On 29/12/2021 08:54 AM, james official wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Aug 2, 2021 at 1:55 AM james official <[email protected]> wrote:
> Hello,
>
>
> Is there any update on this bug? I'm hoping to receive a bounty reward for responsible disclosure once your team has validated the issue.
>
> I will be waiting for your response.
>
> Kind Regards.
>
> On Mon, Jul 26, 2021 at 9:44 PM james official <[email protected]> wrote:
> Hello Team,
>
> As an Ethical Hacker I found some Vulnerabilities in your site few of them is as follows.
>
> Issue : CLICKJACKING
>
> Clickjacking, also known as a "UI redress attack", is when an attacker uses
> multiple transparent or opaque layers to trick a user into clicking on a
> button or link on another page when they were intending to click on the
> top level page. Thus, the attacker is "hijacking" clicks meant for their
> page and routing them to another page, most likely owned by another
> application, domain, or both.
> Using a similar technique, keystrokes can also be hijacked. With a
> carefully crafted combination of stylesheets, iframes, and text boxes, a
> user can be led to believe they are typing in the password to their email
> or bank account, but are instead typing into an invisible frame controlled
> by the attacker.
>
> PoC:
> <html
> <body
> <iframe height="500" width="500" src=" https://ae.peekaboox.com/en/ " ></iframe
> </body
> </html
>
> IMPACTS:
> By using Clickjacking technique, an attacker hijacks clicks meant for one page and routes them to another page, most likely for another application, domain, or both.
>
> Remediation:
> Frame busting technique is the better framing protection
> technique. Sending the proper X-Frame-Options HTTP response headers
> that instruct the browser to not allow framing from other
> domains
>
> For Fix:
> it is missing a X-FRAME header. a user with the help of some tricky css can trick the user to click on the one
> click actions. . You should apply a X-FRAME header
>
> References
> https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
> https://www.owasp.org/index.php/Clickjacking
> https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md
>
>
> Issue : Email Spoofing
>
> DESCRIPTION:
> I just sent a forged email to my email address that appears to originate from [email protected] I was able to do this because of the following :
>
> DMARC record lookup and validation for peekaboox.com
>
> “No DMARC Record found”
> And/ OR
> "DMARC Quarantine/Reject policy not enabled"
>
> Fix:
> 1) Publish DMARC Record. (If not already Published)
> 2)Enable DMARC Quarantine/Reject policy
> 3)Your DMARC record should look like
> "v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:[email protected]"
>
> And
> As I have seen the SPF and TXT record for the peekaboox.com which is :
>
> Found v=spf1 record for peekaboox.com:
> v=spf1 include:_spf.google.com ?all
>
> so valid record will look like :
>
> Found v=spf1 record for peekaboox.com:
>
>
> v=spf1 include:_spf.google.com -all
>
> What's the issue :
>
> What’s the issue: as u can see in the article difference between softfail and hardfail you should be using fail as Hardfail as it doesn’t allow anyone to send spoofed emails from your domains, In current SPF record you should replace (?) or
> (~) with (-) at last before all , - is strict which prevents all spoofed emails except if you are sending
>
> You can validate by testing yourself over here: mxtoolbox.com
>
> This is useful in phishing, and this type of vulnerability is newsworthy (http://bits.blogs.nytimes.com/2015/04/09/sendgrid-email-breach-was-used-to-attack-coinbase-a-bitcoin-exchange/
>
> https://medium.com/@hotbit/official-statement-notices-of-counterfeit-email-listing-hotbit-io-d1d240005d35
>
> This can be done using any php mailer tool like this ,
>
> <?php
> $to = "[email protected]";
> $subject = "Password Change";
> $txt = "Change your password by visiting here - [VIRUS LINK HERE]l";
> $headers = "From: [email protected]";
> mail($to,$subject,$txt,$headers);
> ?
>
> IMPACT:
> Due to this vulnerability, any hacker can send a forged email to your customers using your domain .Thus, getting sensitive information of your customers like login details, downloading a virus/malware etc.
>
> Also When an attacker sends an email to your customers asking them to change their password. The customer, after seeing the mail, might consider the mail as legit and falls for the trap.
>
> In doing this the attacker can take them to his website where certain JavaScript is executed which steals the customer's session id and password.
>
> The results can be more dangerous and impactful.
>
> A study shows why DMARC and SPF are crucial:
>
> 1) $1.6 million on average is what one single spear phishing attack costs for organizations
> 2) $500 million every year is scammed by phishing attacks
> 3) Just 3% of all users will report phishing emails to their management
> 4) More than 400 businesses are targeted by BEC scams every day
> 5) 76% of organizations have reported that they have been victim of a phishing attack.
> 6) 1 in 3 companies have been victims of CEO fraud emails
> 7) 70% of all global emails is malicious
> 8) Fake invoice messages are the #1 type of phishing lure
>
> You can find the SPF fix over here : https://www.digitalocean.com/community/tutorials/how-to-use-an-spf-record-to-prevent-spoofing-improve-e-mail-reliability
>
>
> For DMARC record : https://easydmarc.com/blog/how-to-fix-no-dmarc-record-found/
>
> and DMARC policy here: https://support.rackspace.com/how-to/create-a-dmarc-policy/
>
> Let me know if you need me to send a forged email.
>
> Note: I am expecting a bounty for this responsible disclosure and I would like to report more in the future.
>
> Regards,
> james official
>
> Snapshots
>
>
>
>
>
>
>
good evening my
presently Im looking for super gentleman;-)
Im unmarried angelic Woman, This is my Email box [email protected] ,
I will reply to You my picture)
thank's
.
may I ask You a question?
presently I'm searching for breezy male) I am lonely cute chick;)
Response me to [email protected] :) I can send You my picture
Thank's
.
Good Day,
my able My Champion:)
Where are U from?
Im single oneandonly 32 years old Person from Kazakhstan
For now I'm looking for competent gentleman)
I'll reply to You my photo)
my e-mail for reply is [email protected] :-) good luck!
.
My Mr. Select;-)
Where do u live now?
Immediately Im look up tasty male
I am enjoyable 32 yo person born in Kazakhstan:-)
I can send You my photo attached, Response me [email protected]
Have a nice day
.
Hi astounding;)
Sir adequate:)
Let's small talk:-)
Where are You stay now? Im solitary competent 32 years old Chick born in Kaz=
akhstan;-)
immediately Im look up limpid guy e-mail to: [email protected] ;) I'm goi=
ng to send You my photos;)
Thank you
.
Good Evening My complete) presently Im looking for moral buddy) I am groovy =
Woman:) I can reply to You my photo attach,
My email box is [email protected] ;)
Have a good time
.
May be you're able to baggy chat:) I am single likable Woman!
today I am look up worthy dude from US,
What State are you from?
I am going to send You my picture attach)
this is my Email [email protected] )
.
good day my curvy!
mr. Polite) I wish to chat:-) Now Im waiting for bold male from US,
What State are You from?
Im unequalled Lady;)
I can reply to You my pictures:)
e-mail to [email protected] .
.
superb sir unspoiled)
Greeting attractive
Let's try to talk) My name is Ms.other:-)
for now I am looking for delicious male!
email for reply is [email protected] :) I can reply to You my pho=
t=3D attached, good bye
DISCLAIMER: All the information contained in this email message is strictly=
confidential and may be legally privileged. Such information is intended e=
xclusively for the use of the designated recipient(s). Any disclosure, copy=
ing or distribution of all or part of the information contained herein or o=
ther use of or the taking of any action in reliance upon this information b=
y third parties is prohibited and may be unlawful. If you have received thi=
s email message in error please delete it immediately and notify the univer=
sity through email at [email protected]<mailto:[email protected]>
________________________________
.
My creditable Sir Modern;-) Hey:-)
What is your real name? Im unmarried adroit Girl born in Russian Federation,=
for now I am seeking likable mister)
Email box for response is [email protected] ! I will send You my p=
hoto attached:-)
.
may we small talk;-) presently I'm looking for successful dude:) I'm appeti=
sing person;-) Email for response is [email protected] :) I'm goin=
g to send You my photo attach;)
good luck!
.
good day My moral:-) my caring mr. Unspoilt.
Now I'm trying to find perfective man, This is Email box for response is: bu=
[email protected] I will send You my photo:-) Thank you anyway
.
Im splendid chick:)
presently I'm looking for openhearted guy;-)
Response me: [email protected] ;)
I'll send You my photos)
Good luck!
.
just no.1;) immediately Im looking for comfortable dude)
Im unmarried beneficent Woman
I can send You my picture) E-mail at [email protected] :-)
Bye
.
hey my modern:-) I hope you can trump talk;-) Today I am look up humane mist=
er:-)
my e-mail for contact [email protected] :)
I will reply to You my photo attach;)
Thank you anyway
.
My auspicious mister snookums. hi
Is there a reliable evening today? Now I am seeking only dude from United St=
ates:)
What State are you from?
Im lonely matchless mistress) I can send You my picture this is my Email box=
for contact is [email protected] ;-)
.
Is there slim? I'm pretty miss At present I'm searching for thankful buddy f=
rom United States of America:-) What State are You from?
I am going to send You my photo attached!
response to me at [email protected] ! good luck!
.
top-quality my respectable.
can I ask?
I'm incomparable babe;-) righ now I am searching for goodness man from Unite=
d States)
What State are U from? I am going to send You my picture attached, this is e=
mail for contact is: [email protected] ;-)
.
good evening capable)
Are You ok? Let's talks;-)
Today I am seeking well-disposed guy I'm alone unmatched Lady from Belgium:-=
)
Write to me at [email protected] ;-) I can reply to You my picture=
attached.
.
Let's chat;) How is your day?
Soon I am searching for unspoiled mister from US;)
What State are you from?
Im praiseworthy lady;-) My email for answer: [email protected] ! I ca=
n send You my photos, Good bye
.
Let's try to sore talks:-)
at this moment Im waiting for shining man from United States of America!
What State are u from?
Im lonely bang-up Mistress:)
Response me to [email protected] )
I am going to send You my picture attached) till next time
.
My perfect mister colossal;)
I'm unmarried upright Person:-)
Presently I am waiting for serviceable mister from US What State are you fro=
m? It's my Email box for response is [email protected] ;-)
I'm going to send You my photo attach)
.
I am astonishing Girl;) today Im look up clear dude from USA;-)
What State are You from?
I'll send You my photo attached;-)
My Email for reply: [email protected] ;-)
have a good time
.
Hey my classic!
I hope you can lux talks;-)
How are you doing here?
For now I'm searching for desirable guy! I'm lonely beautiful babe!
I will reply to You my picture attach. my E-mail box for contact: buddiepopp=
[email protected] !
Have a nice day
.
My Mister Beneficial:-) I am serious!
I want to chat,
Righ now I am looking for unique mister:-)
Im single unparalleled Babe)
I'm going to reply to You my photo attached!
Response to me at [email protected] .
till next time
.
my capable Sir Beneficent;-)
good evening
I am brave 28 y.o. Female from Kazakhstan;-)
Today Im searching for goodnatured mister from US:)
What State are You from?
I'll send You my photo:-)
E-mail me to: [email protected] !
.
Shalom, my @emptymy clever[my unequaled!
I wish to speak, Now Im seeking gorgeous man.
It's e-mail for contact: [email protected],
I will send You my picture attach!
till next time
.
My Mr. loose)
aloha:-) @empty{goodman.txt} @emptykind[I need to exceptional talks)
Im able miss;)
Now I'm searching for groovy gentleman.
This is Email box for response [email protected])
I can send You my photo.
Have a nice day
.
my Mr. promising)
how is it going?
I hope You can moaning speak:)
soon I am trying to find benign dude from United States of America;-) What S=
tate are u from?
Im best person
Email to me at: [email protected] . I can send You my photo attach:)
Thank you in advance
.
Shalom:) I hope U can commendable talks.
How r You? Currently I'm trying to find interest mister:)
I'm solitary great chick, Email box for answer: [email protected] ,
I'm going to reply to You my picture attached! good luck!
.
I am unmarried inimitable miss, Immediately Im looking for supreme mister,
I can reply to You my photo attach! E-mail me at [email protected]=
m , Thank you
.
May I ask You?
Let's salty chat. at present Im look up smart dude) I'll send You my picture=
, Response at: [email protected] )
Talk to you later
.
Sir slapup.
bona jorno;-) I hope you can holy talks)
how is going?
presently I am searching for bang-up guy from United States.
What State are u from?
I am fair woman!
I'm going to send You my photo attach! This is Email [email protected] ,=
.
ola)
Where are u from?
Im lonely cuddly 33 years old Lady in Kazakhstan:-) At present I'm waiting f=
or pleasant dude!
this is my email for answer is: [email protected] )
I will reply to You my pictures.
.
Let's try to skinny small talk. Where r You live right now? now Im seeking p=
recious male.
Im single polite 33 yo Girl from Kazakhstan,
I'll reply to You my photos:-)
reply at [email protected] :)
till next time
.
Sir Modish!
Let's try to talk) how do U like it today?
I am single incomparable Girl!
soon I'm looking for creditable buddy from US!
What State are U from?
this is my e-mail for response is: [email protected] .
I'm going to reply to You my picture attach.
.
Bonjorn,
I need to new-made talks:)
At this moment I'm waiting for perfective gentleman from United States) What=
State are You from?
I'm lonely clever Miss.
This is my e-mail: [email protected] ! I can reply to You my picture attach=
.
how so? Currently Im searching for shiny dude)
Im unmarried normal Girlfiend from Kazakhstan,
this is my Email box: [email protected] , I am going to send You my pi=
cture,
.
aloha:-)
My crack Sir Open;-) how do u like it here?
righ now Im looking for lovely man:) I am appetising Girl born in Kazakhstan=
E-mail for reply [email protected] )
I can reply to You my picture:)
Till next time
.
My straight mister fine. soon I am waiting for real male from United States)=
What State are U from?
I'm solitary valuable lady;-) I am going to send You my photo attach)
it's my email for reply is: [email protected] !
.
Let's speak,
Im attentive girl:) Soon Im seeking bold buddy from US!
What State are You from?
I can reply to You my picture attach;) this is email box for contact is burn=
[email protected] .
.
Ave.
My mister Robust! r You ready? Let's try to beatific talks;-)
I am superior mistress! Presently I'm looking for groovy male!
it's my e-mail for contact is: [email protected] ) I'll send You my pictur=
e attach!
bye
.
My class mister Adorable:-)
Im alone bright female;-)
now I'm look up beneficial mister from US!
What State are You from? I can reply to You my photo attach:)
Reply to me at: [email protected] :-)
Have a good day
.
Presently I am searching for unblemished mister from United States, What Sta=
te are You from? I am cuddly babe;-)
I'm going to send You my photo. It's email box is: burnardwastenage401@gmail=
com .
.
My uncomparable mister Lady Killer! Let's exact talks) now I am looking for =
curious gentleman.
I can reply to You my pictures)
response at [email protected] :) have a nice time
.
opportune Sir Perfect;-)
Im unmarried benign Chick)
currently I'm searching for bouncy mister from US!
What State are U from? Response to me [email protected] .
I will send You my photo,
.
Bon dia.
righ now Im waiting for best male!
reply me to: [email protected] )
I am going to reply to You my picture attached) have a nice time
.
Im unmarried shiny Woman
righ now Im waiting for unexcelled gentleman!
I am going to reply to You my photo attach:-)
write to: [email protected] ) Good luck!
.
Hello My oneandonly)
I need to outstanding chat;)
Soon Im looking for competent male:-)
I'm suitable Girl:) I'm going to reply to You my photo;-) it's Email for res=
ponse [email protected] ;)
thank you
.
My creditable Mister best! Bonjour.
Hope u're unmatched;)
righ now I'm waiting for bright buddy) I am solitary pricey female;-) Respon=
se me at: [email protected] :) I'll reply to You my photo attach, Have=
a nice time
.
my top Mister Well-disposed!
Where r You stay?
how so?
I am juicy 31 yo Girl was born in Mariupol and now I am living in Bulgaria!
righ now I am searching for breezy mister;-) I am going to reply to You my p=
hoto attach) This is my Email for reply is: [email protected] )
Have a nice day
.
my tasty corking;-)
I hope U can talk. for now Im seeking unspoiled buddy from USA) What State a=
re you from?
I am select Girlfiend) this is my email for response [email protected] !
I will reply to You my photo)
.
my mister darling, Let's speak,
Currently Im trying to find bland gentleman.
I am going to reply to You my pictures. e-mail me to [email protected]=
.
Have a nice time
.
My class Mister sweet,
Salud)
how so?
Let's peerless speak! I am single breezy Girl! at this moment I am seeking t=
idy man from United States of America.
What State are u from?
this is my E-mail box is [email protected] ,
I am going to reply to You my photo attached)
Thank's
.
my unexcelled mister Kindly!
how is it going?
I am single creditable girlfiend,
Righ now I am trying to find soundly mister from US;-)
What State are You from?
it's E-mail box for response is [email protected] !
I will send You my photo attached,
thank you anyway
.
Hola) I want to chat. today I'm searching for perfective mister;-)
Im lonely unique babe)
It's my Email for contact is [email protected] ) I'm going to repl=
y to You my photo)
good luck!
.
my mr. Nonpareil,
salutation;)
I hope u can speak)
what are u doing?
Im pricey Lady)
immediately I am looking for vivid gentleman,
e-mail to me [email protected] ;) I'll reply to You my pictures)
Have a good time
.
mister beneficent!
Let's talks,
at present I am looking for groovy male.
I'm alone nonsuch girl living in Russia. response me to: anastasiiakalu@outl=
ook.com )
I can reply to You my photos.
.
my brainy:-)
I hope You can speak:-) I am lonely colossal Chick)
at this moment I'm waiting for honorable man from United States!
What State are u from?
I'm going to send You my picture attached,
This is my Email box for reply is [email protected] ;)
Have a nice time
.
Bonjour) Want to meet me?
I hope You are free to chat:-)
I'm solitary polite mistress!
righ now I am looking for normal guy.
this is my e-mail box for response is [email protected] . I will send=
You my photo attach,
talk to you later
.
My Sir respectable, Invite.
Righ now I am waiting for adventurous buddy!
Im alone holy woman,
I am going to send You my photos!
Response at [email protected] .
Bye
.
Hej! humane Mr. Loving. presently Im searching for super guy;-) E-mail me to=
[email protected] ;) I will send You my pictures!
Have a nice day
.
Invite)
my benign sir sugar.
Im single champion Mistress, Immediately I'm looking for delectable dude:) W=
rite me to [email protected] ;)
I can reply to You my picture attach, talk to you later
.
my natural mister Clever)
Good Evening,
I hope everything is beneficent,
presently I'm seeking well-disposed man.
Im cuddly woman,
it's my e-mail [email protected] ;-)
I can send You my picture, Have a nice time
.
mister Thankful;-)
How're U? soon I'm waiting for modern gentleman:-)
I'm going to reply to You my pictures! it's Email is [email protected] =
)
bye
.
Looking for a Gay? I'm 92kg satisfactory blue-eyed blond man born in Kazakhs=
tan, but living in Finland:-)
I'm 34 y.o.
currently Im waiting for adorable dude!
I will reply to You my image attached
this is e-mail box for contact: [email protected] ,
Bye
.
May you are free to careless talks, How is it going? Where are U right now?
I am lonely peerless 31 years old babe from Kazakhstan,
presently Im waiting for beatific guy;-) I can reply to You my picture:-) Wr=
ite at [email protected] ;)
.
beloved Mister Normal;)
Bonjorn;)
Where are U right now?
Immediately Im searching for angelic guy:) I'm adventurous 35 yo Girl stayin=
g in the Kyrgyz Republic!
it's my email box for answer: [email protected] ,
I am going to reply to You my photo attached:-)
.