aura-deprecatedhow you know you've been credited for your first CVE
quinn@aurelia uhh how? i have multiple e-mail addresses of mine publicly on the internet and i never receive such spam
@quinn it looks like zendesk does not care to verify dkim/spf in inbound emails and then "bounce spam" you
@quinn Xe got it too so current working theory is anubis contributors?
sodiboo 
@aurelia @quinn nope. definitely way more widespread than that. buncha folks I've talked to that have nothing to do with Anubis also received this.
as far as I can tell, maybe it was largely targeting emails scraped from git? but I also got to a bunch of real email addresses that were never public, as well as made up variations. so I'm not confident it's just from git
RE: https://gaysex.cloud/notes/aic3wrs8ddjx06o7
as far as I can tell, maybe it was largely targeting emails scraped from git? but I also got to a bunch of real email addresses that were never public, as well as made up variations. so I'm not confident it's just from git
RE: https://gaysex.cloud/notes/aic3wrs8ddjx06o7