PDF Spams Originating from My Domain

I’ve been receiving a large number of returned email notices lately because some spammers have been using my domain in the FROM field of their spams. It seems to be pretty common from my research, and I’m looking into it now, because a client of my just reported the same issue.

These emails will most times come in with the subject line, “Delivery Status Notification (Failure)” with the sender/From address being something like [email protected] This has been going on for some time, with many people:
http://www.vbulletin.com/forum/showthread.php?t=234494

However, this latest PDF spam case which makes use of Zombie computers (which all good spam does), also uses random domains as the sender and that’s really starting to fill the inbox.

The latest PDF scam seems to be a big one:

http://scmagazine.com/uk/news/article/667858/hackers-launch-pdf-spam-campaign/
http://www.first.org/newsroom/globalsecurity/123513.html

So, taking this all together, the new PDF spamming and the spammers injecting your domain into the return address makes for a bad day. There isn’t much you can do about these spammers using your domain unfortunately:

http://forum.spamcop.net/forums/index.php?showtopic=203
http://www.modwest.com/help/kb9-234.html
http://reviews.cnet.com/4520-6028_7-6513748-1.html
http://www.webmasterworld.com/forum10/7968.htm
http://forums.whirlpool.net.au/forum-replies-archive.cfm/775149.html
http://news.bbc.co.uk/1/hi/technology/5203256.stm

That’s it for now. I’ll need to update these links to actually make sense, but in summary, there’s basically nothing you can do to stop these guys out of Spamistan from spoofing your email/domain in their emails.

Post written by Ed Reckers

Founder and lead web development consultant at Red Bridge Internet : San Francisco WordPress Developers and Consultants.

One Response to “PDF Spams Originating from My Domain”

  1. Gia

    hi nice post, i enjoyed it

Leave a Reply