Just Say No to Big Buddha Bud

By Lisa Vaas  |  Posted 2007-10-26 Print this article Print

Buying "legal herbs" for smoking purposes from Chinese servers with ever-changing IP addresses will likely lose you your credit card number. Bummer, dude.

Disregard the photos of fat green buds with names like "Super Skunk" or "Holland Haze" and steer clear of spam advertising that "Big Buddha Bud is the bomb."

Security vendor F-Secure said the paranoia over an e-mail that advertises "legal herbs" for smoking purposes is justified, given the fact that the joint shop doing the advertising is sitting on top of Hong Kong servers whose IP addresses, oddly enough, keep changing every few minutes.
The spam, coming from the "Bud Shop," is advertising what it calls a "legal bud" meant for smoking.
"Intense and potent, yet it puts my mind at ease," the spam reads. "Wow you guys werent kidding about not driving after smoking this!" A link in the spam leads to a site called thebudshop.hk, located, as the URL suggests, in Hong Kong. F-Secure peeked under the covers to find out where the server is actually hosted and found that the address keeps changing every few minutes. Also, the IPs point to individual DSL boxes, F-Secure wrote in an Oct. 26 posting—in other words, home computers. "Sounds like a botnet to me," wrote Mikko H. Hyppönen, chief research officer at F-Secure. Further research shows that all the sites name servers are registered to Chinese addresses and provide DNS for each other, Hyppönen said. "Weve seen Citibank and MySpace phishing sites hosted under these domains before," he wrote in the posting. "But this is the first time weve seen a smoke shop hosted there. Its quite likely the whole site is fake and only built to collect credit card numbers. So just say no." Check out eWEEK.coms Security Center for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEKs Security Watch blog.
Lisa Vaas is News Editor/Operations for eWEEK.com and also serves as editor of the Database topic center. Since 1995, she has also been a Webcast news show anchorperson and a reporter covering the IT industry. She has focused on customer relationship management technology, IT salaries and careers, effects of the H1-B visa on the technology workforce, wireless technology, security, and, most recently, databases and the technologies that touch upon them. Her articles have appeared in eWEEK's print edition, on eWEEK.com, and in the startup IT magazine PC Connection. Prior to becoming a journalist, Vaas experienced an array of eye-opening careers, including driving a cab in Boston, photographing cranky babies in shopping malls, selling cameras, typography and computer training. She stopped a hair short of finishing an M.A. in English at the University of Massachusetts in Boston. She earned a B.S. in Communications from Emerson College. She runs two open-mic reading series in Boston and currently keeps bees in her home in Mashpee, Mass.

Submit a Comment

Loading Comments...
Manage your Newsletters: Login   Register My Newsletters

Rocket Fuel