Hanky Panky at Friendster

Something is cooking at Friendster... either it is being hacked or some of my friends' account been hacked.

I continuously received three comments from known friends with funny messages. I don't the messages are genuine.

Take one example.



It came from the following..

From Friendster Sun Sep 30 21:39:55 2007
Return-Path:
Authentication-Results: mta327.mail.re4.yahoo.com from=mail.friendster.com; domainkeys=neutral (no sig)
Received: from 209.11.169.63 (EHLO c350a-3.friendster.com) (209.11.169.63)
by mta327.mail.re4.yahoo.com with SMTP; Sun, 30 Sep 2007 21:39:54 -0700
Received: from unknown (HELO mailmerge4) ([10.16.72.3])
by c350a-3.friendster.com with ESMTP; 30 Sep 2007 21:39:49 -0700
Message-Id: <6456bm$gl4fcv@c350a.gbxsc.friendster.com>
From: Friendster
Subject: New Friendster comment from Benny
To: brandonteohno1@yahoo.com
Content-Type: multipart/alternative; boundary="----_=_FSter_001_3251191213588466"
MIME-Version: 1.0
Content-Length: 7847

In which if you compare with a genuine (user-triggered) message (about a contact in my friendster list having updated her blog), there is no flaw.

From Friendster Sun Sep 30 00:01:39 2007
Return-Path:
Authentication-Results: mta224.mail.re3.yahoo.com from=mail.friendster.com; domainkeys=neutral (no sig)
Received: from 209.11.169.84 (EHLO c350b-1.friendster.com) (209.11.169.84)
by mta224.mail.re3.yahoo.com with SMTP; Sun, 30 Sep 2007 00:01:38 -0700
Received: from unknown (HELO mailmerge7) ([10.16.72.3])
by c350b-1.friendster.com with ESMTP; 30 Sep 2007 00:01:28 -0700
Message-Id: <65kve0$af3ct8@c350b.gbxsc.friendster.com>
From: Friendster
Subject: vi has updated her Friendster Blog
To: brandonteohno1@yahoo.com
Content-Type: multipart/alternative; boundary="----_=_FSter_001_3251191135688466"
MIME-Version: 1.0
Content-Length: 8003

This is also a very annoying spam which brings inconvenience to your friends.

Also check out the MSN-Check-Who-Deleted-You trap.