Someone has been spoofing my Cable4096 account again. I got the headers of the following email:
From cable4096@yahoo.com Tue May 7 12:19:26 2002
X-Apparently-To: cable4096@yahoo.com via web11601; 07 May 2002 12:08:24 -0700 (PDT)
Return-Path: (password@icq.com)
Received: from 195.175.130.56 (HELO localhost.com) (195.175.130.56) by mta401.mail.yahoo.com with SMTP; 07 May 2002 12:07:56 -0700 (PDT)
From: cable4096@yahoo.com | Block Address | Add to Address Book
Reply-to: password@icq.com
To: cable4096@yahoo.com
Date: Tue, 7 May 2002 22:19:26 +0300
Subject: Your ICQ Password
X-Mailer: MailXSender 1.02
MIME-Version: 1.0
Content-Type: text/html; charset="iso-8859-3"
Content-Transfer-Encoding: base64
Content-Length: 6267
It then has a fake Yahoo Form that said my password is expired. I assume if I enter my password into this form that someone will steal it?
The IP traces to TTNET.NET.TR which I assume is Turkey?
Any ideas? I tried abuse@ttnet.net.tr but it bounced.