Received spam from someone that has "stolen" my identity
Thread poster: Wenke Geddert
| | Ralf Lemster
Local time: 03:38
English to German
Unfortunately, the falsification of e-mail addresses (so-called "spoofing") is a regular occurrence.
Has anybody had a similar experience;
Between once and five times a day...
if yes, what did you do?
Since I never send e-mail to myself, I have set a filter rule that moves incoming messages containing one of my main addresses (either in the reference line or in the sender's address) straight to the bin.
If no, grateful for any further advice.
Filter it out, otherwise ignore it...
You could try and trace the sender through the IP data in the headers, but that's usually a waste of time.
| Ignore or junk it.... || Jun 5, 2004 |
I get ten to twenty mails a day claiming to be returned to me from one of my addresses. They are really just attempts to infect me with a virus.
The days of internet innocence are over, I'm afraid. And this would seem to be part of a wider "war".... unfortunately.
Ignore it until a product comes along that will ensure it gets filtered out,
| | Kevin Fulton
Local time: 21:38
German to English
| I've been spoofed, too || Jun 5, 2004 |
From time to time I receive automated responses indicating that certain individuals are on vacation, or that "firstname.lastname@example.org" is not a valid e-mail address, when in fact, I've never sent e-mail to these people (my virus definitions are automatically updated regularly, and my ISP has very strict rules about the number of e-mails to be sent at any one time, so I'm not generating spam unknowingly).
I occasionally even get rude e-mail from recipients of this spam. This has had one serious consequence: the mail server of one of my clients, a division of a very large and well-known company has my ISP listed as a spam site, and my e-mail to them gets prefixed with "Spam" in the subject line.
I consulted with my ISP on this, and they told me there's little that can be done. Much of the spam going out under my spoofed ID is in Chinese, so I have no idea what my name is associated with.
One way to cut down on your vulnerability is not to include your e-mail address in your sig line, or to write it out such as "wenke at xyz.co.uk" which will make it harder for someone to pick it up from a web site.
| || || |
| the ongoing spam saga || Jun 5, 2004 |
One way to cut down on your vulnerability is not to include your e-mail address in your sig line, or to write it out such as \"wenke at xyz.co.uk\" which will make it harder for someone to pick it up from a web site.
Kevin, they don\'t pick the e-mail adresses from websites only, but the hack entire server centers just for for e-mail addresses.
I haven\'t even a website and get Nigeria scams, Viagra offers etc. under my own name by dozens. Even changing the e-mail address regularly doesn\'t help much, aside from the fact that your customer doesn\'t wish to update his mail file twice a month.
It\'s like theft: known for centuries, still going on.
| Sometimes they get caught || Jun 5, 2004 |
A week ago a spammer was sent to prison for 7 years,
so it may help to investigate.
The IPs in the email are one point to start at, another way is to find out the owner of the website being promoted in the spam.
| Code your e-mail on your web site || Jun 6, 2004 |
I had a look at your website, and have the following tip:
Remove a href="mailto:email@example.com"
and replace the tag with this:
a href="mailto:THE CODE GENERATED VIA THE LINK PROVIDED IN THIS POSTING, SEE http://www.wbwip.com/wbw/emailencoder.html"
(remember to include the tags before and after)
More information, and for free encoding of additional e-mail adresses is found here:
The problem on the Internett is that software can be set up to scan the Internet for "mailto:" tags, and when picking up the code the format excpected for sending out spam would be like the typical firstname.lastname@example.org. The results are good. I have used this method for a long time, and I receive very litle spam.
The good thing with this system is that the browsers recognise the coding, and codes it back, so when a real person finds the adress, it is clickable, and everything works normally.
PS Do also have a look at www.firetrust.com for some good programs that can help.
[Edited at 2004-06-06 11:08]
[Edited at 2004-06-06 11:10]
| || || |
... thanks for your contributions, very much appreciated. The links (articles, software, etc.) were very useful and interesting, and I shall look into these in more detail! Thanks again.