Solved

hundreds of returned email warnings received

Posted on 2012-03-10
2
645 Views
Last Modified: 2012-03-10
Our client suddenly started to received hundreds of email warnings, receipts, returned notifications etc. The notifications seem to come from a myriad of sources globally.

We first checked the PC for virus activity using NOD32 and Malwarebytes but found no infection. We checked all running processes and found nothing unusual.

Checking the date/time of the notifications shows that they continue 24/7 even when the PC is switched off, thus we have kind of ruled out the PC as being a source of SPAM.

We installed Spamfighter which removes about 1/2 the notifications automatically, which still leaves a huge amount to be deleted each day, but of course this is only masking the problem.

The email address is their main contact so it is "enquiries@xxxxxxxxx.org.uk" (xxxxxxxxx replacing their domain name) so I'm wondering if their email address is being used by a maliceous party.

I'm out of ideas what to do next to try find and halt the source, thus if anyone has any suggestion what to try next, it would most appreciated.
0
Comment
Question by:ensite31
2 Comments
 
LVL 3

Accepted Solution

by:
IMIronMan earned 500 total points
ID: 37705016
It is probable you are victim of of Backscatter:
http://www.spamresource.com/2007/02/backscatter-what-is-it-how-do-i-stop-it.html

Pay close attention to the area "If you are an Administrator"

Also, never post e-mail addresses on a webpage, neither viable on the page or in the source code.  Use a contact form and script.

Easiest way to stop it, if it is just the one e-mail address is to change it.  Probably not do-able since the client uses this in marketing materials???  

They're are many Third party services that you can run your mail through before reaching your mail server they may help.

You could spend much time and money "cleaning" this e-mail address, or ...
Make the changes to your server as suggested in the above link, then creates a new general delivery e-mail, and makes sure it doesn't appear on your client's website.

Another good article:
http://backscattervictims.blogspot.com/
0
 

Author Comment

by:ensite31
ID: 37705118
Thanks IMIronMan, that's very useful information, appreciate your help.
0

Featured Post

Threat Intelligence Starter Resources

Integrating threat intelligence can be challenging, and not all companies are ready. These resources can help you build awareness and prepare for defense.

Join & Write a Comment

Check out this infographic on what you need to make a good email signature that will work perfectly for your organization.
Is your Office 365 signature not working the way you want it to? Are signature updates taking up too much of your time? Let's run through the most common problems that an IT administrator can encounter when dealing with Office 365 email signatures.
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
This video shows how to remove a single email address from the Outlook 2010 Auto Suggestion memory. NOTE: For Outlook 2016 and 2013 perform the exact same steps. Open a new email: Click the New email button in Outlook. Start typing the address: …

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now