05-11-2009, 11:01 AM
|
#2
|
|
Dances with Wolves
Join Date: Jun 2006
Location: Section 304
|
I imagine if you were hacked and used to send out spam you'd get a hell of a lot more than one bounceback. More than likely somebody is just trying to trick you into clicking on something. Just delete it.
|
|
|
|
05-11-2009, 11:21 AM
|
#3
|
|
Franchise Player
|
Probably someone spoofing headers on the email message. Here is an explanation from google (it's specific to gmail but the same concepts apply to other account providers): http://mail.google.com/support/bin/a...n&answer=50200
Quote:
If you receive bounce messages for mail that appears to originate from your account, you find messages in Spam from 'me,' or you receive a reply to a message you never sent, you may be the victim of a 'spoofing' attack. Spoofing means faking the return address on outgoing mail to hide the true origin of the message.
When you send a letter through the post, you generally write a return address on the envelope so the recipient can identify the sender, and so the post office can return the mail to the sender in the event of a problem. But nothing prevents you from writing a different return address than your own; in fact, someone else could send a letter and put your return address on the envelope. Email works the same way. When a server sends an email message, it specifies the sender, but this sender field can be forged. If there is a problem with delivery and someone forged your address on the message, then the message will be returned to you, even if you weren't the actual sender.
If you've received a reply to a message that wasn't sent from your address, there are two possibilities:
- The message was spoofed, forging your address as the sender.
- The original sender used your address as a reply-to address so that responses would be sent to you.
Neither of these possibilities indicates that your account was compromised, but if you're concerned that your account may have been compromised, you can check recent access to your account. Just scroll to the very bottom of your inbox and click the Details link next to 'Last account activity.'
For further information, please select the description that matches your situation below.
You're receiving bounces for messages you never sent.
- Many spammers use software applications to generate random lists of email addresses at common domains, based on words in the dictionary. Spammers then use these lists to send illegal mass mailings. This practice is called 'dictionary spamming.' Many of the addresses randomly generated by dictionary spammers are invalid. If a spammer spoofs your Gmail address to send dictionary spam, you will likely receive reports of delivery failures, which appear to be replies to message sent from your address.
Because these messages originate outside of Gmail, we aren't able to stop spammers from spoofing your address. However, Gmail protects your email address's reputation by authenticating all the mail that really comes from you. When another domain receives an unauthenticated message from Gmail, it can tell that you didn't really send the mail, and it is unlikely that your email address will be blocked. For our part, we are concerned about spoofing and bouncebacks. We ask you to report these messages by checking the box next to the unwanted message and clicking Report Spam at the top of your inbox, or by opening the message and clicking Report Spam at the top of the message.
You can help stop spammers by also sending the full headers of these unlawful messages to the Federal Trade Commission at spam@uce.gov.
If you feel that you may be a victim of identity theft, we suggest contacting your local authorities.
There are messages in Spam from 'me.'
- One common tactic used by spammers is to send a message to a recipient, and fake the 'From:' field to contain the same address. Spammers hope that because the mail is sent 'from' your address, it will slip past our spam filters. But not so fast! Gmail authenticates all of our mail, so we know when a message wasn't actually sent by you. We do our best to place these forged messages in your Spam folder.
Because Gmail replaces your email address with 'me' when you look at lists of messages, you may see spam mail from 'me' in your Spam folder. All this indicates is that someone forged the return address on your messages to be your own email address.
If we miss any messages, we ask you to report them by checking the box next to the unwanted message and clicking Report Spam at the top of your inbox, or by opening the message and clicking Report Spam at the top of the message.
You can help stop spammers by also sending the full headers of these unlawful messages to the Federal Trade Commission at spam@uce.gov.
If you feel that you may be a victim of identity theft, we suggest contacting your local authorities.
My Contacts say I sent spam to them, or I found suspicious access to my account.
- If your Contacts received spam from you, or if you find access activity that you can't account for, we suggest taking the following steps as soon as possible.
- Make sure your operating system is up-to-date. Be sure you've downloaded and installed any critical Windows updates from Microsoft, or Mac OS updates from Apple. We recommend enabling automatic updates.
- Check for viruses and malware. Run a scan on your computer with a trusted anti-virus software. If the scan detects any suspicious programs or applications, get rid of them immediately. Note: We have no connection with these companies and can't comment on their effectiveness. We can tell you, though, that trying all of these programs often makes a difference, as does having the latest versions.
- Change your password. Make sure you choose a password that contains a combination of numbers, characters, and case-sensitive letters. Never reuse your Gmail password on any other website. These steps will help strengthen the security of your account.
- Update your secondary email address and your security question. Should you ever lose access to your account, these two items will be vital to recovering your account. Make sure that you have access to the email address listed as your secondary, and the answer to your security question should be easy for you to remember, but hard for others to guess.
- Check your Settings. Click Settings at the top of any Gmail page and verify that the following items have not been changed:
- On the General tab: Your Signature, Vacation Responder and Browser Connection.
- On the Accounts tab: Send mail as.
- On the Filters tab: Look for any filters you did not create, especially filters that forward your mail.
- On the Forwarding and POP/IMAP tab: Look for any changes you did not make.
- Use a secure connection when signing in to Gmail. In your Gmail settings, select 'Always use HTTPS.' This setting protects your information from being stolen when you are signing in to Gmail on a public wireless network, like at a cafe or hotel.
Also, to make sure that no one gains unauthorized access to your account:
- Never tell anyone your password or security question and answer, and don't write them down.
- Never send this information by email.
- Never give out your gmail password after following a link sent to you in an email. Access gmail directly by typing mail.google.com in your browser's address bar.
- Don't reuse your Gmail password on other websites.
- Periodically change your password and security question.
- Keep your secondary address up to date.
We are very concerned about this activity. Please obtain the full headers of the spam message from Sent Mail or from one of your Contacts, and report it to our team. We'll investigate your report, but we're unable to respond to individual cases. In particular, please note that we aren't able to provide you with information about attempted logins to your account including, but not limited to, the IP address from which the attempted login was made, and the time and date attempted logins occurred.
|
|
|
|
|
|
05-11-2009, 11:33 AM
|
#4
|
|
Franchise Player
|
Thanks, guys. Yes, I thought that if my account was being used for spam that I would have had hundreds or thousands of bouncebacks, but I've had just the one. I'll delete it, as advised. Funny, but the address I supposedly sent to is very similar to mine, such as:
if my address is jsmith@johnsmith.com
the address supposedly sent to is jjones@johnjones.com
IOW, same first name as mine, different last name, at full name dot com.
I'll just delete it.
|
|
|
|
|
05-12-2009, 08:49 AM
|
#5
|
|
Franchise Player
Join Date: Jul 2005
Location: in your blind spot.
|
Headers are always spoofed on spam emails. The spammers don't want to be blocked so they make it harder to trace the real origin.
And it took a while, but ISPs figured out that them sending reply email ("bounces") were essentially doubling the number of email for no good reason (since the headers are usually spoofed).
If no one ever bought anything from those spam, eventually they would go away, but since it only takes 1 out of 1000 (or even fewer) to be profitable, there are more than enough morons to keep the spammers in business.
__________________
"The problem with any ideology is that it gives the answer before you look at the evidence."
—Bill Clinton
"The greatest obstacle to discovery is not ignorance--it is the illusion of knowledge."
—Daniel J. Boorstin, historian, former Librarian of Congress
"But the Senator, while insisting he was not intoxicated, could not explain his nudity"
—WKRP in Cincinatti
|
|
|
|
Posting Rules
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
HTML code is Off
|
|
|
All times are GMT -6. The time now is 07:54 AM.
|
|
