WordPressに来るURL付きのAIのコメントに対処するため「Antispam Bee」を入れて約1か月検証してみた #WordPress #Spam #スパム

https://reviewdays.com/archives/80521

Top malicious IPs observed on 24 June 2026

153.125.138.166 (Japan) https://sh4meful.com/ip/153.125.138.166
50.127.181.82 (United States) https://sh4meful.com/ip/50.127.181.82
165.212.64.24 (United States) https://sh4meful.com/ip/165.212.64.24
74.125.224.46 (United States) https://sh4meful.com/ip/74.125.224.46
209.85.210.44 (United States) https://sh4meful.com/ip/209.85.210.44
209.85.215.198 (United States) https://sh4meful.com/ip/209.85.215.198
205.139.111.43 (United States) https://sh4meful.com/ip/205.139.111.43
199.193.205.208 (United States) https://sh4meful.com/ip/199.193.205.208
2607:f8b0:4864:20::c48 (United States) https://sh4meful.com/ip/2607:f8b0:4864:20::c48
2607:f8b0:4864:20::c47 (United States) https://sh4meful.com/ip/2607:f8b0:4864:20::c47

#infosec #spam #spoof #emailsecurity

Mrs Miasma says I don't know anyone in Oregon well enough to go to tea with them despite there being no rush.

But you can certainly go in my stead if you're up for some tea with apparently no other implied obligations. 🙄

#SPAM
#Scam

🚨 📡 🇯🇵 Free TV in Japan, at a Cost: "Black-CAS" Spam Campaigns

We've been tracking a high-volume spam campaign targeting Japanese users advertising illegal "Black-CAS" services. In Japan, satellite TV channels are accessed through Conditional Access Systems (CAS), the legitimate pay-per-channel infrastructure used by Japanese broadcasters. Black-CAS exploits that system, intercepting and cloning legitimate smartcard signals to unlock paid content without a subscription.

Beyond the piracy angle, these devices have been documented to come preloaded with malware and residential proxy clients — buyers think they're paying for cheap TV access, but they're also handing over their network to threat actors.

The emails rotate Japanese-language subjects like "簡単に明日からタダになる、魔法のカード" ("a magic card that makes everything free starting tomorrow") or "有料放送が、ずっとただ無料です" ("paid broadcasts, free forever"). Every email carries a set of URL shortener links (clck[.]ru, u[.]to) rather than direct destination URLs — a clear detection evasion mechanism.

The protective shortener layer hasn't made them conservative with the number of domain registrations. Behind it, the infrastructure relies heavily on RDGAs (e.g. mchj43nmd4j53[.]xyz, 87dsq65dh3[.]xyz), while bolder actors directly use overtly themed domains: blackbcas[.]xyz, black-cas-card-tv[.]lol, black-cas-card-jp-super[.]xyz.

At the landing pages, users can directly purchase these devices, as seen in the images below.

This week our data puts Black-CAS alongside phishing and fake shop campaigns in the top threats targeting Japanese speakers — definitely a threat to consider.

#dns #threatintel #threatintelligence #cybercrime #cybersecurity #infosec #infoblox #infobloxthreatintel #illegalstreaming #asia #japan #blackCAS #tv #malware #residentialproxy #spam #rdga #サイバーセキュリティ #情報セキュリティ #マルウェア #迷惑メール #ブラックCAS

A nation that protects selling private information and spam has no right to lecture on privacy and digital rights.

#Malaysia #spam #privacy #nationofcriminals #digitalgovernance

Klar. Du machst NIE Fehler.
Deswegen schaffst es auch nicht, eine anständige UTF-8-Kodierung in Deinen Mails hinzubekommen oder zu merken, dass Du die selbe Mail an drei Adressen derselben Person geschickt hast.

Gibt kein Geld. Geh sterben.

#Spam #Erpressung