«

Hi,

I, or rather, my company have recently become the victims of deliberate
spamming in the form of "e-mail injection".
This is where a spammer/hacker etc repeatedly submits blank or nonsense
messages on a clients web site contact form, causing them to receive phoney
enquiries.

I can track IP addresses on the server, so what do I do once I have an IP
address that I feel is suspicious (ie. was showing as being on the site at
the time of the phoney form submissions)?

What do I do now? How do I go about tracking the person/PC responsible?
Is this even possible?

Thanks
Nath.

"tradmusic.com" <> writes:

>Hi,

>I, or rather, my company have recently become the victims of deliberate
>spamming in the form of "e-mail injection".
>This is where a spammer/hacker etc repeatedly submits blank or nonsense
>messages on a clients web site contact form, causing them to receive phoney
>enquiries.

What has this to do with your company? Or are you hosting those web pages?


>I can track IP addresses on the server, so what do I do once I have an IP
>address that I feel is suspicious (ie. was showing as being on the site at
>the time of the phoney form submissions)?

You could use whois to track where the IP address came from. Then whan you
discover it is russia or nigeria, what do you do next? Contact Putin or
Obasanjo? And even then that computer was probably broken into from
somewhere else.

Ie, give up. Strengthen your system.


>What do I do now? How do I go about tracking the person/PC responsible?
>Is this even possible?

>Thanks
>Nath.