#0 - Oct. 7, 2010, 8:14 p.m.
Q u o t e:
Return-path: <[email protected]>
Envelope-to: *removed*
Delivery-date: Thu, 07 Oct 2010 06:34:50 -0500
Received: from [222.236.44.115] (port=63318 helo=blizzard.com)
by *removed* with smtp (Exim 4.69)
(envelope-from <[email protected]>)
id 1P3okH-0000gh-OZ
for *removed*; Thu, 07 Oct 2010 06:34:50 -0500
Received: from fdac ([192.168.116.1])
(envelope-sender <[email protected]>)
by 192.168.116.131 with ESMTP
for <*removed*>; Thu, 07 Oct 2010 19:34:32 +0800
Message-ID: <[email protected]>
From: "BLIZZARD ENTERTAINMENT" <[email protected]>
To: <*removed*>
Subject: Battle.net - Risky Login IP Notice
It was an obvious phishing mail replete with spelling errors and links to sites that were not Blizzard.com or Battle.net--and it went to my public, non Battle.net mail address. The IP originates from Korea, but it does appear that this hacker has managed to spoof not only Blizzard emails, but their domain. Already forwarded to [email protected]
