Categorized | Email Tips

Death to Email Hijackers!!

Posted on 11 January 2007 by Lara Kulpa

Okay, so Joe talked about it a few weeks ago, and now (a former employer of mine :)) Jim Boykin is raving about it as well. Chances are such that if you have any kind of website, you’ve fallen victim to it, as have I. I call it “email hijacking” and it happens when someone sends out their spam email campaign using your domain name in the “Reply-to” section.

It doesn’t even have to be YOUR email address. I’ve had it happen to me with addresses like ‘jpc4029dnmgal@anubismarketing.com”. What happens is typically that your real email address has been set up as a “catch all” account, and you wake up one morning to 400+ “returned mail: unknown recipient” emails. Greaaaaat, you say! Well, I’d like to share some of the things I’ve done in an attempt to stop it, and why.

First I’ll touch on the “why” - It’s because inevitably, your domain is going to end up on some company’s “spammer” list (or two, or twenty companies’ lists), and could eventually wind up banned by some ISPs or other email hosts that use spam filters and blockers. Then, in the event that you do get one of those people who WANTS to be on your email list, they probably won’t receive it.

Now, for your sheer entertainment, here are a few things I’ve been known to do when this has happened to me. I’m not saying that these are GOOD ideas, mind you. Most of them kind of just happened out of pure anger and frustration the first few times this happened to me!

  • I’ve checked the whois on the domain for the site/link that’s included in the spam message. Unbelievably, these people rarely get private registrations. Not so unbelievable is the fact that they’re typically from other countries.
  • After checking the domain name, I find out who’s hosting that site, and report them to their hosting company for partaking in email spam behavior. Sometimes this works, other times it doesn’t. Depends on if the IP addresses match with the emails usually.
  • The registration information. I’ve gone so far as to call the phone number (yep, paid the international toll), and ask for the registrar by name. Only once did I get said person on the phone (during a call to Costa Rica), and let’s just say they got an earful of English profanity, peppered with demands to stop, etc. I’m sure I said something about “taking legal action”, at which the guy probably laughed after hanging up the phone.
  • Slightly more reasonable, yet not quite effective in terms of stopping the act itself, is turning the “catch all” option off. This only works if you’re not using one email address to catch others that you’ve put out there, like sales@domain.com, info@domain.com - without actually creating those emails as accounts. Simple fix - create them, and then turn the catch all off.
  • Definitely send an email to your own email hosting provider, explaining the situation. Ward off unexpected account terminations this way. They won’t be able to do anything to stop it, but they’ll appreciate the heads up.
  • Try using a javascript to display your email address, as opposed to the traditional way to code it in there. Much like the way you see people posting them so they don’t receive spam (lara [at] anubismarketing [dot] com) except, they can scan and find that stuff as far as using it to send out spam so that it appears to be coming from you. They don’t even need to do that… I think they typically just pick a word they like and check for already registered domains. In this case, the javascript thing or the disguise won’t help you much. But since I’m not a spammer, I wouldn’t know exactly what they’re doing, so any little bit helps.
  • When all else fails, and you’ve already removed a significant percentage of hair from your head, gone through a whole pack of smokes in the course of 2 hours, and lost your voice from yelling at the spammers - let it go. It typically only happens over a 12-24 hour period, and then it’s over, they’ve moved on. They’re only doing it so THEY don’t get the returned mail… it’s silly, it’s ridiculous (wouldn’t you want to know if the email list you paid for was worth the dough?) and it’ll drive you crazy - take the precautions with your ISP/email host and move along…

Note: I’ve seen a few people talking about SPF, or Sender Policy Framework. I really know nothing about this, nor how to implement/request it. If anyone has any experience with SPF, please let us all know!

Popularity: 17% [?]

 

Leave a Reply

Advertise Here
Advertise Here

EXTRAS