An Ingenious Phishing Technique

Craig Hays wrote a fascinating article describing a phishing campaign his company had to deal with that had an ingenious method of propagating itself.

As we dug deeper and compared sign-in timestamps with email timestamps, it became clear what was happening. The phishing emails were being sent as replies to genuine emails. Emails exchanged between our people and our suppliers, our customers, and even internally between colleagues.

A typical phishing email comes from an email address you’ve never seen before. Granted, it might be similar to a real address you’d expect to see such as rnicrosoft.com instead of microsoft.com, but it’s rare for an address you trust to send you anything suspicious. When someone you know does send you something suspicious it’s usually rather obvious. When it happens we contact them directly to let them know there’s a problem. ‘Looks like you’ve been hacked, mate.’ We don’t fall for the scam.

In this attack, however, all of the phishing links were sent as replies to emails in the compromised account’s mailbox. This gave every email an inherited sense of trust. ‘You asked for this thing, here it is: link to phishing page’. When I realised what was happening, I was in awe. Whether done by deliberate design or not, the outcome was incredible. The conversion rates one these emails would make even the greatest of email marketers envious!

Rogue Janitor

Rogue Janitor is a browser-based game where you are tasked with cleaning up a dungeon after the adventurers and monsters have had their day.

By day, your monstrous colleagues protect treasure and beat up adventurers, but by night, every tile of it must be scrubbed by your expert hands. Or as much of it as you have patience for; it’s actually a pretty chill job.

Rogue Janitor - You Mop The Blood
Rogue Janitor – You Mop The Blood

The game’s source code is available on a Github repository.

Eaglemoss Diecast Regula 1 Space Laboratory

Eaglemoss is making this 11.8 inch tall diecast model version of the Regula 1 Space Laboratory from Star Trek II: The Wrath of Khan.

Eaglemoss Diecast Regula 1 Space Laboratory
Eaglemoss Diecast Regula 1 Space Laboratory
Eaglemoss Diecast Regula 1 Space Laboratory
Eaglemoss Diecast Regula 1 Space Laboratory
Eaglemoss Diecast Regula 1 Space Laboratory
Eaglemoss Diecast Regula 1 Space Laboratory

Maybe This Is Why Independent Bookstores Are Having So Many Problems?

An October 15, 2020, New York Times story about the plight of independent bookstores during the pandemic suggests that such outlets are hyperfocused on Amazon. The odd thing is the first couple paragraphs suggest that these booksellers might be shooting themselves in the foot,

The signs started appearing in bookstore windows this week.

“Buy books from people who want to sell books, not colonize the moon.”

Wait; what? I’m buying books from a company that wants to colonize the moon . . . and bookstores expect me to see that as a bad thing?

If anything, that would make me want to buy more from Amazon.

“Honey, I’m not just buying book 500 of The Wheel of Time series. I’m helping colonize the moon!”

If this is the sort of marketing acumen that independent bookstores bring to their fight against Amazon, they have already lost.

Buy books from people who want to sell books, not colonize the Moon.
Buy books from people who want to sell books, not colonize the Moon.