Fortune 500 computers sending spam
You would expect Fortune 500 companies to have high end antivirus, antispyware and antimalware software yes and have their networks set up to block the end result of PCs that may be infected? Apparently not.
Check out this article at the Washington Post by Brian Krebs:
The outted companies are:
Oracle Corp - spam seen as far back as 21 February - http://psbl.surriel.com/listing?ip=220.127.116.11
American Electric Power - infected hardware apparently owned by a contractor - spam seen as far back as 7 December - http://psbl.surriel.com/listing?ip=18.104.22.168. AEP's excuse for the problem is that "AEP was obligated to set up the contractors with Web mail, instant messaging and other communications tools that generally are not allowed inside of the company's network".
Hewlett-Packard - declined to comment about the incident
ExxonMobil - oh yay, spam from that IP as far back as October last year!! - http://psbl.surriel.com/listing?ip=22.214.171.124
IndyMac Bank - February 2007 - http://psbl.surriel.com/listing?ip=126.96.36.199
Dow Jones - spam seen back in mid March - http://psbl.surriel.com/listing?ip=188.8.131.52&list=PSBL+list+query
Best Buy - infected since October 2006!! (http://bl.csma.biz/cgi-bin/listing.cgi?ip=184.108.40.206 and http://psbl.surriel.com/listing?ip=220.127.116.11&list=PSBL+list+query)