Hi,

However I wonder - and here I'm looking for your opinion - what can be a
possible gain for the attacker from such an attack? The form does not have
any field to enter own information that could be passed to the recipient -
just login, password and email - so all the recipient gets is a standard
message saying that someone registered an account named XYZ on my website
using their email address, and if they want to confirm it, they should click
the link, otherwise do nothing and the registration will expire in 24 hours.
How can anyone benefit from spamming people with such messages?

Put the spam into the login name. I got several such "Wordpress Registration" mails in the last weeks.

Regards
Bjoern
_______________________________________________
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop

Reply via email to