Shop sends Mail with order cancellation

We currently have a problem with our shop sending cancellations to our customers after they have successfully created and payed an order.

They place an order, pay and everything works fine. The status of the order is correct as well. But after a few minutes our system creates an cancellation document and sends it via mail to our customer.

Anyone an idea whats the problem here?

Thanks a lot in advance. All the best

Why my mobile sends SMS to a random number without my permission?

My mobile sends SMS to random numbers without my permission. All messages are sent automatically. Here is an example of an SMS.

SBIUPI qUrXgeX26iEY%2B2si9JHhubIjm7R2aHoo6pWcbXBpJho%3D

All the receivers are Indian numbers (mostly airtel sim card). When I check the Truecaller app I found those numbers are named Cybercrime Frauds and reported as spam by more than 18000 peoples.

I have checked my app SMS permissions and checked for hidden apps. I couldn’t find anything harmful.

Is there anything to afraid?

Why ASP.Net Identity sends sensitive information to clients?

As far as I understand, Identity sends to the user an encrypted token with some user information like the user name and expiration date. Then, when a new request arrives to the server, it decrypts it and will have available all the user claims and some other information.

My question is, in case there is no need to send the authetication information to other servers (for example if you are authenticating against another web site) would it be more safe not to send as much information to the user? Perhaps we can just send a large code to the user and then match it with an in memory collection or database.

I know that if someone is able to intercept that code she will be able to also make valid requests, but when the “ticket” expires it will not longer be valid for anyone until making the login process again. However, if that code is compromised there won´t be any other information than that.

I hope I am being clear with my question, if not, please let me know it so I can improve it.

Foreign domain points to server and sends spam

I do have a really weird one. I am running a webhosting server that is being blocked by certain providers that use Cloudmark. I contacted the customer support and they got back with an email header that is unfortunately sending spam.

Received: from sub.domain.example ([1.1.1.1(my servers ip)]) Subject: sven.n.nilsson,=?utf-8?q?=62=65=6b=72=c3=a4=66=74=61=20=64=69=74=74=20=64=65=6c=74=61=67=61=6e=64=65=2e=2e=21=21=21?= From: =?utf-8?q?=53=77=65=64=69=73=68=20=6d=65=74=68=6f=64?=  <VNH9DI6HOW68YGD4AWRMSPB0VT7UWSHX5@gmail.com> 

The header states, that the mail came from my server. But how is that possible, I do have a closed relay and there is no mailbox for that domain. Furthermore, the domain is pointing to my servers’ IP. How can I prevent it from faking email headers and pointing to my servers’ IP?

How to change this simple code so that it sends the email notification after payment in WooCommerce?

How to change this code so that it sends the email notification after successfully payment in WooCommerce?

add_action( 'woocommerce_applied_coupon', 'custom_email_on_applied_coupon', 10, 1 ); function custom_email_on_applied_coupon( $  coupon_code ){     if( $  coupon_code == 'mycoupon' ){          $  to = "john@gmail.com";         $  subject = "Coupon $  coupon_code has been applied";         $  content = "         The coupon code $  coupon_code has been applied by a customer         ";          wp_mail( $  to, $  subject, $  content );     } } 

How to intercept data my TV communicator sends and receives?

I wish to check how and what is being sent when I interact with my TV via the remote that talks to the communicator box (not smart tv). I am curious what protocols are used, and how often does the communicator phones home. Does it send encrypted data or not. The ISP is also my TV network provider.

To tackle this question I tried to use a recently obtained knowledge of ARP poisoning. I installed a Kali Linux and used arpspoof. I also enabled IP forwarding and launched Wireshark but failed to receive any kind of packets that I could attribute to my communicator box. The TV also continued to operate normally which leads me to 2 theories:

  1. My ARP poisoning failed, that is why TV worked normally and Wireshark failed to show any packets.
  2. ARP poisoning worked, TV continued to work so IP forwarding must have worked too, but why would Wireshark then not capture anything?

Prior to that, I tested ARP poisoning on a 2nd home PC and successful intercepted traffic.

What are my options? Any alternatives to ARP spoofing if I wish to observe traffic my home appliances are sending to the internet? A special kind of router to put between TV communicator and the rest of the home network?

Open VPN in Ubuntu18.04 with restriction which requires a keep-alive window in browser that sends requests every 100 seconds to local address

My institute has a system which requires a keep-alive window that sends requests every 100 seconds to local address “192.xx.xx.xx”. If a request is not sent, the internet access on that room IP is revoked. When VPN is connected, all intranet addresses are inaccessible and so even when you connect to a VPN successfully, the connection will break after around a 100 seconds. Any solutions ?

How secure is Aamazon Kinesis endpoint? Does the Kinesis Producer Library (KPL) securely sends messages to Kinesis endpoint?

I am trying to build a Amazon Kinesis based streaming data ingestion from a on-prem data soruce. I can use the Kinesis Producer Library (KPL) to produce messages to Kinesis Data Stream. I wanted to know how secure is the data transfer/ingestion through KPL. Is it using a secure endpoint underneath or using any in-transit encryption? Kinesis Data Stream offers to encrypt data at rest. But in this case how about the data security while in transit before it gets written to Kinesis Shards?