Well, Chris, it looks to me by the RSA publishing this information that they are encouraging anyone with a botnet to send thousands of bogus queries to a web form, which would crash a mail server or database, which belonged to a company, that the phishers had previously hacked and the company was previously unaware was being used in a phishing attempt. So now it seems the RSA are sending out information about their activities, which could infulence scriptkids/ hackers etc who own large bot nets to attack anything they see as a "phish". Although, just by individuals of the public sending a single query per user to a phish login form, could cause the same affect as a malicious users bot network.
<br><br>
<div><span class="gmail_quote">On 4/1/06, <b class="gmail_sendername">Chris Umphress</b> <<a href="mailto:umphress@gmail.com">umphress@gmail.com</a>> wrote:</span>
<blockquote class="gmail_quote" style="PADDING-LEFT: 1ex; MARGIN: 0px 0px 0px 0.8ex; BORDER-LEFT: #ccc 1px solid">On 3/31/06, n3td3v <<a href="mailto:n3td3v@gmail.com">n3td3v@gmail.com</a>> wrote:<br>> With this in mind, are the RSA say its OK to DDoS fake login pages that the
<br>> public think are phishing sites with fake information to take the phishing<br>> sites down? Or maybe the RSA didn't think too far into it before making<br>> their "illegal tactics" public. I guess nobody in the industry learned from
<br>> <a href="http://makelovenotspam.com">makelovenotspam.com</a> and the whole Lycos affair.<br>><br>> On 3/31/06, n3td3v <<a href="mailto:n3td3v@gmail.com">n3td3v@gmail.com</a>> wrote:<br>> ><br>> > But do you remmeber back to the Make love not spam saga? Yeah, the big
<br><br>So.... why repeat yourself 15 minutes later? And personally, I like<br>the fate that one spammer in Russia met a few months ago....<br><br>--<br>Chris Umphress <<a href="http://daga.dyndns.org/">http://daga.dyndns.org/
</a>><br></blockquote></div><br>