[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x

AntiSpam

Various techniques are used to prevent email spam (unsolicited bulk email). No technique is a complete solution to the spam problem, and each has trade-offs between incorrectly rejecting legitimate email (false positives) vs. not rejecting all spam (false negatives) - and the associated costs in time and effort. Anti-spam techniques can be broken into four broad categories: those that require actions by individuals, those that can be automated by email administrators, those that can be automated by email senders and those employed by researchers and law enforcement officials.

Share tech news, updates, or what's on your mind.

Sign up to Post

WordPress site getting SPAMMED, not sure how to stop it.

My website, FortressHarvard.com

has a Download button, and when you fill your Name and Email, then click the button, you get an email with the URL to my book's Preface and Chapter 1. Also, I get an email to my "info@" email's inbox with the name and email of the person requesting the downloading.

I am getting spammed there, by some sort of robot, and do not know how to stop it.

This started yesterday morning, and continued every few minutes, non-stop. I even added a CAPTA requirements this morning, but that had no impact.

How do I stop this SPAM?

Thanks
0
Become a CompTIA Certified Healthcare IT Tech
LVL 12
Become a CompTIA Certified Healthcare IT Tech

This course will help prep you to earn the CompTIA Healthcare IT Technician certification showing that you have the knowledge and skills needed to succeed in installing, managing, and troubleshooting IT systems in medical and clinical settings.

Hi,
What's the best anti-spam-virus cloud filtering service that one can use before email arrive to my internal Exchange Service?
I use to use MXLogic which was bought by McAfee which discontinued the service and I moved to ZeroSpam which is not that good.
I have been told ProofPoint is really good but couldn't find any reviews or gatner,
tx!
0
Using Exchange 2013, is there a mail to block internal user usurpated email?

More and more users are getting unwanted email like « From: "legitusername@contoso.com" realspamsender@windowslice.com »
I'm looking for rule that block mails displaying @contoso.com that aren't sent from consoto.com email adresses.

Any help woud be appreciated,
Thanks!
0
Hi , our public UP is being blacklisted by CBL.

Reason given: This IP is infected (or NATting for a computer that is infected) with an botnet that is emitting email spam. The infection is probably sendsafe.

I'm assuming that one o the 25 or so computers in my network is infected.

Question: Is there a way usnijg the Sonicwall to determine in a machine is acting as an SMTP server and sending out spam email?

My SonicWall is a new model NSA 2600 with updated SonicOC
0
Here's the good news about the user - they are 89 years old, and receive and send email and texts on their iPad and iPhone.

They are having problems with AOL/Yahoo email

The issue is that they cannot receive email from their son, because for some reason, their son's company domain is on some sort of blacklist.  The company uses Outlook 365 and some sort of mail authenticator  mime cast.com

AOL doesn't have a whitelist option yet.
They have identified the messages as being not spam in the Junk box, but that doesn't stop the mail from going into the junk folder.

It is too much to ask an 89 year old person who has mastered email on devices to change their email address.
I have instructed them to check their junk box as regularly as they check their inbox.

It would be nice if there was a way to get the AOL/Yahoo filtering system to allow mail from the company domain.

I have attached a header from a message that was sent to junk, if that is of any help.

MXtoolbox has analyzed and found messages to be on a blacklist
MX Toolbox report


Thanks.

-------------------------

X-Apparently-To: jwb@aol.com; Wed, 24 Oct 2018 19:01:52 +0000
Return-Path: <john@pxxxxxxp.com>
X-YahooFilteredBulk: 63.128.21.182
Received-SPF: pass (domain of pxxxxxxp.com designates 63.128.21.182 as permitted sender)
X-YMailISG: RD0lkWgWLDt9Eokj4OV7S0B0GjdN9EXqXiK_FGw9i6AP6Su3
 SoPLLyRX6Gstjx7xgDzW.hDYmw7WDObZs1yGDcCgTZPU.0RpAY8d5LC1ve8K
 …
0
Key VP of Sales is receiving large amounts of Junk Email. Company owners want his email filtered out. What can an IT guy do? We have a standard hosted email like everyone else. Do I have to get EXchange Server? I don't even know if there is any advantage to that, Exchange Server does not have any advanced features for filtering??

Once of the owners asked me "Do we need to hire someone to go through the VP's email every day to manually go through every email?"

Is he right? CDW told me about Trend Micro, but i dont know if this is the solution. Actually it does not appear a solution exists except to hire someone, is this really the case??
0
I get a lot of spam, and sometimes cannot unsusbcribe, especially if the website asks me to put in the email address I wish to unsubscribe and does not do it automatically from the link. This is because I have maybe 50+ aliases set up over the years, which I have and still need to keep.
I use Office365 and Outlook 2016 as the client.
How can I determine which of my email address alias a message was sent to when I receive it. I don’t just wish to know I received an email sent to Any alias. I want to know which one of my aliases people used. For instance I wish to know if it was sent to office@ or accounts@ etc. But I can never know... Outlook does not tell you. From what I read, a possible solution is to create a rule in outlook to sort mail, but that means to to create 50 rules, and 50 inboxes and do new rules and new alias inboxes every time I add an alias is a headache.
Is there any way to know which of my aliases were used? Any third party software even or plugin? It’s stupid that Outlook only shows my main email name in the sent to field, Even when an actual alias that was used. Maybe I’m missing something?
Please help.
Thanks.
0
Hello, we use Exchange 2016 in house - we are looking for a 3rd party spam solution, what do you recommend?
0
Hi,

I have a user who send email with url to more then 100 000 recipients. The 365 ATP Safe Link block its.

I know I can create an exception rule but the real root cause is still there because the other mail servers proctection (others mailfilter) will might block it too. My question is how can I know what is consider as malicious in the email fromat that we sent. Like that I can explain to user to not add this or do that.

Thanks
0
Hello,
My client IPs has blacklisted only at Sorbs
Sorbs website – „Site Down for Maintainance“
http://www.sorbs.net
Im waiting for Sorbs website to find out reason and to delist IP but in the meantime what can I do to find source of the problem.
Any advice?
Maybe it is false positive?
http://forums.gfi.com/dnsblsorbsnet-has-alot-of-false-positives-m900742006.aspx
0
OWASP: Avoiding Hacker Tricks
LVL 12
OWASP: Avoiding Hacker Tricks

Learn to build secure applications from the mindset of the hacker and avoid being exploited.

From security reporting & analysis, I'll need to access our
Exchange Online (think it's ver 2016) to view

a) Spam, phishing, blocked emails
b) the blocking policies (whitelisting, greylisting, blacklisting) in place
c) DKIM, SPF, DMARC settings

I'm completely newbie to MS Exchange: can let me know screen by
screen (or step by step) where to view this after being granted
access to Exchange Online?

We did not get 3rd party email filtering tools (like Proofpoint),
just purely what's offered by O365
0
My friend is using a service called SpamArrest to manage his unruly inbox. Any new senders will receive an email back from the server asking they pass a "capcha" type non-robot test. After that, they're whitelisted and may email freely.

He's moved to Office 365 and SpamArrest isn't compatible.

The goal is a robust email whitelisting cloud service that will work with O365 Exchange and Outlook Desktop Client. Do you know of a product that can meet this need?

Thank you,

John
0
Hi, im deploying Barracuda Cloud Spam, we have Exchange 2016 in house, i believe i have to allow certain IPs from Barracuda, where would i make this change?
0
Hi,

We are running an out of warranty MacAfee appliance of secure email.
Now we are looking for a Cloud based solution that scans out email for virus / spam /adware and all other kind of nasty things that does not belong in our network.
We want to have a good control over the spam settings and release spam when there is a false positive to release the mail to the user.
We have 500 emails clients and likely, we are growing so looking for an enterprise solution.
What do you recommend or do you use for your email spam/virus solutions?
Many Thanks.
Harm
0
Hi Folks,

I'm new here. Glad to be a part of this prestigious group. Lately we're observing random spams with below header. Needed some help with improving 365 spam filtering for this case. Thanks, much appreciated.

SYXPR01MB1086.ausprd01.prod.outlook.com with HTTPS via
 SY3PR01CA0107.AUSPRD01.PROD.OUTLOOK.COM; Thu, 26 Jul 2018 00:03:00 +0000
Received: from ME2PR01CA0098.ausprd01.prod.outlook.com (2603:10c6:201:2c::14)
 by SYXPR01MB1088.ausprd01.prod.outlook.com (2603:10c6:0:a::17) with Microsoft
 SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id
 15.20.973.21; Thu, 26 Jul 2018 00:02:59 +0000
Received: from SY3AUS01FT011.eop-AUS01.prod.protection.outlook.com
 (2a01:111:f400:7eb5::200) by ME2PR01CA0098.outlook.office365.com
 (2603:10c6:201:2c::14) with Microsoft SMTP Server (version=TLS1_2,
 cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384) id 15.20.995.16 via Frontend
 Transport; Thu, 26 Jul 2018 00:02:59 +0000
Received: from shark4.inbox.lv (194.152.32.84) by
 SY3AUS01FT011.mail.protection.outlook.com (10.152.234.115) with Microsoft

 SMTP Server (version=TLS1_1, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA_P256)
 id 15.20.995.12 via Frontend Transport; Thu, 26 Jul 2018 00:02:58 +0000
Received: by shark4.inbox.lv (Postfix, from userid 2004)      id 5DC7456544; Thu,
 26 Jul 2018 03:02:55 +0300 (EEST)
Received: from localhost (localhost [127.0.0.1])      by shark4-in.inbox.lv
 (Postfix) with ESMTP id 4A53656542      for …
0
User believed that their computer was hacked, and some sort of malware was sending out messages.
They received several phone calls from friends who had gotten blank email messages.

I installed and ran Malwarebytes, which removed 717 components of Potentially Unwanted Programs. McAfee had been previously installed, but that protection didn't notice what Malwarebytes found and quarantined.

I noticed that there was something, possible an extension, that was added onto chrome.  I

Is there anything else that I should run?
What's a good way to check if emails are still being sent out?


Thanks.
0
Hello I have a user that contacts in their email account is being spammed by a fake email account with their name but not their email account, so I am thinking that if all of the people on the sent list is from this users email contacts and then it list them as the sender it must have something to do with their account?  How is this happening?
0
Hello,

We have a problem with an SMTP send farm. All public IP of the farm are blacklisted by Spamcop and we can't request a new delisting.

We are using an antispam filter for INcoming & OUTgoing mails. No mail can be send is a domain doesn't exist on our system. I download the list of sender contacted today & I tried to identify a problem on the list. But I found nothing suspect...

I think there is one (or many) mail adresses used by spamcop as "trap" to identify spam sender.

Have some advice to help me to solve this problem ?

Thanks.
0
Looking for a low cost spam filter in an exchange server.  I was wondering if I could use a Ubuntu VM on the Exchange box and if there were some built-in or open source spam solution that I could install on the Ubuntu VM to filter out the SPAM email before passing it along to the Exchange server.
0
OWASP: Forgery and Phishing
LVL 12
OWASP: Forgery and Phishing

Learn the techniques to avoid forgery and phishing attacks and the types of attacks an application or network may face.

This message is sent to me, from me and on behalf of me. Upon clicking the reply key I see the real sender. I have tried to options and add to the blocked list and also open the blocked content and unsubscribe them (meggannsmith6) to hopefully get them blocked by the actual company with the unsubscribe link.
This person is sending me multiple messages each day in two accounts and I changed the passwords and no luck.
What is the solution?
0
Hello all,
I have a client that has 50 POP3 email addresses for their 50 computers that is being hosted at web.com and using Outlook 2016 as the email program.
The issue is that one of the POP3 email addresses is suddenly receiving a number of porno spam emails.
The web.com spam filter is set to default and I really don't want to change this since the client is in the medical community so it might reject legitimate emails.
Is there a good spam filter program that we can test on the computer that has the POP3 account on it?
I do NOT want to change the MX record for the domain at all to the spam software company like some of the software wants you to.
Thanks,
Kelly W.
0
We will soon be starting a relationship with a company where we will be allowing them to send emails to our customers on our behalf from their mail provider using our domain name. They are using Amazon Ses, and they have asked us to add the amazonses.com domain as an allowed sender in our SPF record. We are going to do this, but I am a little uncomfortable with the risk of any potential Amazon cloud customer having the ability to spoof our domain and pass SPF. Because of this, I am looking into implementing DKIM and having the third party sign their messages with a private key.

I want to implement DKIM for our own domain's email messages as well. I have been reading up on DKIM, but it gets a little confusing when third party senders become involved. I am looking to see if anyone can provide me with a best practice for this situation.  If I create a private/public key pair for our domain, I am guessing that it is not recommended practice to provide that key to the third party and tell them to use the selector name I make up. I have come across different articles describing the use of multiple selectors, but I admit I am finding them confusing. Can I have two different private keys for the same domain? Then I could give them one private key for their emails and have a separate key for our emails? Do I use the same private key, but create two selectors for my domain? Then provide the third party with the private key and tell them to sign using the alternate selector? At that …
0
Dear Experts

Iam looking for good antivirus/anti spam and other protection software for the recently purchased dell latitude 3940 with windows 10 would like to subscribe for good one can you please suggest which one to go for, thanks in advance. mcafee total protection is slightly cheaper compared to mcafee business security please suggest.
0
I deleted an important folder and the spam folder. I empty the deleted mail folder. I restored both together in a new folder. Now I have few important messages (10.000) and a mass of spam together (54.000 ).

We have both kaspersky serverside anti spam and EOP. Both only works on recived Items. Is there a way to scan a folder marking spam items and moving them to spam folder?

I tested spambully but it crashes on training.
0
This question is for the Exchange Admins out there who have experience in dealing with phishing campaigns or malicious emails in general.

When a phishing campaign with malicious links and/or attachments hits your mail servers what are doing to figure out who clicked the links or attachments in said phishing email?

We are using Exchange 2013 CU19 On-Premise , Outlook 2013

Thank you for your time and knowledge!
0

AntiSpam

Various techniques are used to prevent email spam (unsolicited bulk email). No technique is a complete solution to the spam problem, and each has trade-offs between incorrectly rejecting legitimate email (false positives) vs. not rejecting all spam (false negatives) - and the associated costs in time and effort. Anti-spam techniques can be broken into four broad categories: those that require actions by individuals, those that can be automated by email administrators, those that can be automated by email senders and those employed by researchers and law enforcement officials.