You are not logged in.
- Topics: Active | Unanswered
#1 2008-12-25 19:16:14
- neok
- Member
- From: Cyprus
- Registered: 2003-12-14
- Posts: 190
- Website
Please help, my emails are being intercepted by spammers!
Hi,
I recently had enough of junkmail getting through my ISP's filters and Sylpheed's bogofilter, even after regular training. I decided to make a white list by making filter rules that would divert spam to the Junk folder, if the From: header did not contain the name of an email domain from my address book. I then asked my regular contacts to sent a blank reply to my email just to make sure they get through to the Inbox.
Within 48 hours I received an email from a spammer that used a fake From: with an email address supposed to be coming from my ISP's email server! Now I think there are at least three ways this could happen:
The spammer breaks in regularly into my machine (which I run as a normal user) and discovered the white list filter arrangement.
The spammer inercepted my email on the way to my regular contacts.
The spammer has spyware installed on at least one of my contact's machine and obtained a copy of my email.
Whatever the case, I now even have junkmail arriving with my own address in the From: header! Any idea which is the most likely way the spammer(s) intercepted my email? I may soon change to a new ISP and would like to take measures, if at all possible these days, to guard my new email address. And is there a way I can find out if one of my contacts has spyware installed?
Please help! This is rather a serious problem for me and others as well, I should think.
My thanks in advance.
Regards
Neoklis ... Ham Radio Call: 5B4AZ
Offline
#2 2008-12-25 23:23:12
- byte
- Member
- From: Düsseldorf (DE)
- Registered: 2006-05-01
- Posts: 2,046
Re: Please help, my emails are being intercepted by spammers!
Nobody intercepted or hacked anything.
Relying on the From: header is totally and utterly useless.
From: is a free-form field, just like Date:, To:, Subject: or anything else.
You can put anything you like there and spam with your own From: address is a rather common sight.
1000
Offline
#3 2008-12-26 12:31:24
- neok
- Member
- From: Cyprus
- Registered: 2003-12-14
- Posts: 190
- Website
Re: Please help, my emails are being intercepted by spammers!
Nobody intercepted or hacked anything.
Relying on the From: header is totally and utterly useless.
From: is a free-form field, just like Date:, To:, Subject: or anything else.
You can put anything you like there and spam with your own From: address is a rather common sight.
Actually, this is what I got from the spammer, after I notified my regular contacts in my address book that I set up an addressbook-based white list which directs non-whitelisted emails to the junk folder:
Gucci
To ensure delivery to your inbox (not bulk or junk folders), please add gucci@announcement.gucci.com to your address book.
Unsubscribe | Privacy Policy
Unable to view? Please go to http://www.gucci.com/e/b/us/chiodo08
You have subscribed to receive Gucci email communication. US Corporate Address: 685 Fifth Avenue, New York, NY, 10022, USA
Now I feel this strongly suggests that the spammer read the email I sent to my regular contacts. And before this happened, I never got any emails with a return address other than some apparently random dummy email.
If he was smart enough to find out that I made a whitelist to avoid junk mail, why does he suggest I put him in the address book? I guess he thinks I must be stupid, trying as I did to avoid junk mail!
Thank you
Regards
Neoklis ... Ham Radio Call: 5B4AZ
Offline
#4 2008-12-26 12:52:31
- zenlord
- Member
- From: Belgium
- Registered: 2006-05-24
- Posts: 1,221
- Website
Re: Please help, my emails are being intercepted by spammers!
lol
That's default in most mailing list software because they know many people have filters set up like you just did. Don't worry.
Offline
#5 2008-12-26 22:44:45
- fukawi2
- Ex-Administratorino
- From: .vic.au
- Registered: 2007-09-28
- Posts: 6,224
- Website
Re: Please help, my emails are being intercepted by spammers!
As byte said, there's no hacking or anything going on - all it is is something called Back Scatter.
See Wikipedia 
http://en.wikipedia.org/wiki/Outscatter
Are you familiar with our Forum Rules, and How To Ask Questions The Smart Way?
BlueHackers // fscanary // resticctl
Offline
#6 2008-12-27 16:49:07
- neok
- Member
- From: Cyprus
- Registered: 2003-12-14
- Posts: 190
- Website
Re: Please help, my emails are being intercepted by spammers!
As byte said, there's no hacking or anything going on - all it is is something called Back Scatter.
See Wikipedia
http://en.wikipedia.org/wiki/Outscatter
We should go back to fax - or can thay spam that too! (spamfax or faxspam?) ;-)
Regards
Neoklis ... Ham Radio Call: 5B4AZ
Offline
#7 2008-12-27 21:09:46
- kludge
- Member
- Registered: 2008-08-03
- Posts: 294
Re: Please help, my emails are being intercepted by spammers!
fukawi2 wrote:As byte said, there's no hacking or anything going on - all it is is something called Back Scatter.
See Wikipedia
http://en.wikipedia.org/wiki/OutscatterWe should go back to fax - or can thay spam that too! (spamfax or faxspam?) ;-)
yup, it exists. google it. the best is the fax loop: take a really long sheet of paper, feed it through the fax machine, and tape the ends together. dial. annoy 
[23:00:16] dr_kludge | i want to invent an olfactory human-computer interface, integrate it into the web standards, then produce my own forked browser.
[23:00:32] dr_kludge | can you guess what i'd call it?
[23:01:16] dr_kludge | nosilla.
[23:01:32] dr_kludge | i really should be going to bed. i'm giggling madly about that.
Offline