"Spoofed" Email Address

Similar Messages

• Spam being sent from my btinternet email address

  Hi
  I keep getting delivery failure emails for emails that I definitely haven't sent, to email addresses that are only stored in my iPhone contact list (a very old version of it) and a few prople have told me they have had spam emails from this account as well. I have changed the password each time, removed any saved contacts, checked for linked addresses etc but it keeps happening. I don't even use this email address, but it's the only one that is linked to my BT account for which I have phone and broadband so I'm not sure I can just delete it, Any ideas?

  Your account was probably previously hacked, when Yahoo had its systems hacked, your email address and all your email contacts would have been harvested by the hackers. This means that they can send spam emails to your contacts anytime they wish without having to re-hack your account so changing your password will have no effect.
  They will have spoofed your email address so that the emails appear to be coming from your account. This is to fool your contacts in to thinking the emails are from you and are safe to open. When the emails are not delivered they will be returned to your email address hence the Mail Delivery Sytem returns..
  There is nothing you can do other than to stop using that email address and tell all your contacts to treat any emails from it as spam and to delete them.
  You could then set up a sub-account on your BT account and use that.
  See links about spoofing email addresses.
  http://en.wikipedia.org/wiki/Email_spoofing
  See link for BT info.
  http://bt.custhelp.com/app/answers/detail/a_id/394​​​11/&s_intcid=con_sab_L1roblem%20with%20service:L...

• Need to change my main BT email address, but how?

  I'd prefer a reply from an OFFICIAL BT Forum Mod if possible, please.
  I need to change my main BT email address, but how do I go about doing this?
  The address is being used as a spoofed address by spammers and I am getting non-delivery notices from the intended receipients' mail servers. Not the end of the world, but it's a PITA.
  Normally, I'd just dump the address and create a new one, but this is the main address attached to my account, which I cannot just change.
  Advice and/or help (FROM A MOD ONLY) would be appreciated. I've already tried the Contact Us from BT and the Online Chat thing, but both times got idiots from India who had no idea what I was talking about.
  TIA.
  OB
  I'm a Private person; I respect those who respect my Privacy.

  is that not for your MY BT account not your btyahoo email address
  normally you need to conatact the mods for that change 
  contact mods
  can take up to 3 working days for mods to contact you
  If you like a post, or want to say thanks for a helpful answer, please click on the Ratings star on the left-hand side of the post.
  If someone answers your question correctly please let other members know by clicking on ’Mark as Accepted Solution’.

• Can't send results to BLANK email address in SWF

  We have many different customers that want the quiz results
  sent to them. If I leave the email address blank on the Quiz
  Preferences window, Outlook automatically opens and email with a
  blank TO: field and the results in the body, and the user types the
  email address of the recipient before sending results. This works
  great when published as an .EXE.
  However, when I publish as an .SWF and place in a browser, I
  press the Send E-mail button and get the following message:
  This form is being submitted using e-mail.
  Submitting this form will reveal your e-mail address to the
  recipient, and will send the form data without encrypting it for
  privacy.
  You may continue or cancel this submission.
  ---OK--- --Cancel--
  I select OK and nothing happens.
  I just wanted the system to open Outlook like it did when ran
  as an EXE.
  Any ideas?

  Assuming your problem lies in HTM/SWF published files, you
  can hack the sendMail() function on/around line 28 of the
  email_body.htm or email_attachment.htm template files (depending on
  which reporting method you select in the Quiz Properties) to prompt
  the user for the correct username.
  However, the built-in Prompt() method may not work in IE7 and
  later, per the following note on the
  MSDN
  website:
  In Windows Internet Explorer 7 and later the Prompt() method is
  blocked by the information bar in the Internet zone. This helps
  prevent malicious sites from initiating spoofing attacks.
  If that turns out to be a show-stopper, you'd have to build
  your own solution for gathering the e-mail address using a
  combination of DHTML and Javascript.
  Assuming you're willing to give it a try, the template files
  can be found in:
  C:\Program Files\Adobe\Adobe Captivate 3\Templates\Publish
  Example code using the Prompt() method is shown below:

• Verizon customers helpless from SPOOF email spammers.

  A week ago, my Outlook Inbox began filling up with returned undeliverable emails that I never sent. My computer was not even turned on when these emails were sent.  Someone was spoofing my email address to send bulk spam for viagra and porn.  I let Verizon know what was going on and asked what I could do to stop it. Their advice was to change my email password. I told them it is not my account or machine that is sending the spam, so a password change will do nothing. That did not seem to matter to them. They are not following any kind of logic, they are following a set script.They were clueless.  The Spoof emails are of course still filling my Inbox. I guess I just have to wait until the spammer has burned out my email addresses credibility for this to stop.  Verizon doesn't seem to think it's a problem :-/ Thanks for nothing Verizon.

  wickedfish wrote:
  A week ago, my Outlook Inbox began filling up with returned undeliverable emails that I never sent. My computer was not even turned on when these emails were sent.  Someone was spoofing my email address to send bulk spam for viagra and porn. 
  Unfortunately this is an all too common problem.  There really is nothing Verizon or any ISP can do about it. Email protocols were designed at a time when trust between systems was implicit.  To solve this and other related problems we need new email protocols.  That isn't going to happen anytime soon. For now, a decent spam filter can help deal with these bounce storms when the happen. Good Luck. 

• Never-used email address getting spammed.

  When I signed up for BT Broadband they made me choose an email address [email protected]. I have never used it to send an email, not even to BT.
  Within days of getting connected I began to receive spam emails on the new email address from a company called dabs.com. I worked out that they are the contractor BT uses to supply modems to customers. All dabs.com needed was my street address to post me the modem but BT told them my email address as well and they decided to abuse it. After I complained, BT said they would arrange for the emails to stop within 28 days but they've missed that deadline.
  Now I am receiving spam advertising male libido boosting tablets.
  How can my never-used email address have leaked? Can I blame dabs.com for selling it on to a spammer? Can spammers get them in other ways?

  Fathom wrote:
  When I signed up for BT Broadband they made me choose an email address [email protected]. I have never used it to send an email, not even to BT.
  Within days of getting connected I began to receive spam emails on the new email address from a company called dabs.com. I worked out that they are the contractor BT uses to supply modems to customers. All dabs.com needed was my street address to post me the modem but BT told them my email address as well and they decided to abuse it. After I complained, BT said they would arrange for the emails to stop within 28 days but they've missed that deadline.
  Now I am receiving spam advertising male libido boosting tablets.
  How can my never-used email address have leaked? Can I blame dabs.com for selling it on to a spammer? Can spammers get them in other ways?
  Hi.
  dabs.com is not only a modem company, they sell all sorts of tech stuff. They used to be a separate company, but BT bought them a few years ago.
  Spammers get their email address in a vast number of ways. Even if you've chosen a new address, this address could still actually be on a spam list.
  For example spammers can assume if [email protected] exists, then so does [email protected] and [email protected] etc. They can also use dictionary methods, make all sorts of assumptions based on other user names (e.g. with or without a "period" and add/remove it). Also the email address can also have been used before, either as a primary or sub account - this means that the email address is already known and on spam lists.
  Similarly [email protected], [email protected] etc, as well as slightly mispelt ones [email protected] ....
  If the email address was dormant until you "picked it", then any bounces returned as email address not existing will never end up at the sending spammer, as the email addresses they use as the "From" address are never theirs and are either spoofed as someone elses (and they get the non delivery reports) or just random addresses.
  There are other methods e.g. virus/trojan infected computers relaying email addresses to spammers without the user even knowing, and this virus infected computer could be a contact who has your email address, and not necessarily your computer infected.
  http://www.andyweb.co.uk/shortcuts
  http://www.andyweb.co.uk/pictures

• If I try to send an email ,I got the message "the server doesn't accept this email address".It happened suddenly,before it worked correctly and I didn't change anything

  If I try to send an email ,I got the message "the server doesn't accept this email address".It happened suddenly,before it worked correctly and I didn't change anything

  Change the password on that e-mail account. It's possible that your account has been hacked/spoofed and spammers have used it to blast out junk, leaving you to 'pay the price'. If it's one where you can contact the company, contact them and ask them what's going on. (if this is g-mail, yahoo, hotmail, don't bother, there's no way to contact any sort of support)

• How do I delete my old BT email address

  Hi, about 6 months ago, my BT email address started sending out spam to whole address book.  I deleted all my contacts, all my old emails, spoke to BT who informed me that my address would be deleted within a couple of months! But it hasn't been, as I received a spam email from  this address yesterday.  How do I go about deleting this address.  Any help would be gratefully received.

  It is more likely that the email address has been spoofed rather than it sending the emails. If your account was previously hacked all your contacts addresses will have been harvested by the hackers and they are now free to use them anytime they want. Presumably you have told your contacts to treat anything from that email address as spam and to bin it. If not you should do that now.
  See link about spoofing.
  http://en.wikipedia.org/wiki/Email_spoofing

• How did someone send an email using my email address to others without my knowledge?

  Recently someone said I sent an email out to their friends.  I have a MacBook Pro.  How could this happen?

  It is likely that someone else's computer was used, your address was found in their address book and the spammer "spoofed" your email address.
  Email spoofing

• Someone is using my email address

  There have been several occasions recently when people on my address list have received emails appearing to be from my BT email account. These mails have no subject and contain just a link to some unknown site. They appear to be sent to a block of about 12 or so addresses and the addresses vary each time but are all from my contact list. I have contacted BT and been advised to change my password and security question and to check that there were no spurious and unrecognised entries in my account details. I have done all this plus I have removed my signature detail from my account details. The problem is still happening and the emails still being sent still include my signature name even though I have deleted from my account detail. I have two other email accounts (aol and Yahoo) which I have had for years and never had this problem. I have had my BT account for six months! The irony is that I have never used my BT email and don't intend to! How can I stop this as it is annoying a lot of friends and business contacts?

  janmcolley wrote:
  My email address has been used by somebody else four times in the last few weeks - the last time half an hour ago. The first time BT noticed and sent me the standard message saying change your password, which I did. The second time they didn't seem to notice but I changed my password again anyway. The third time I changed it once more, emailed BT to draw attention to the fact this was happening and pointed out that a friend had received several 'spoof' emails that day, all from BT addresses. This suggested to me it was a BT problem, if not uniquely then most commonly. Despite the promise of a prompt reply to my message, I received nothing at all, other than a week or so later in the form of yet another standard email advising me to change my password. I thought this ironic given it was me who'd told BT about the problem in the first place! This morning a friend with a BT email address has found that she has again been the victim of an email address thief, the third time in three weeks. And now me for a fourth time. So rather than give out the stock advice about changing passwords, can somebody at BT please say why this problem is occurring so regularly; whether there is anything customers can do to prevent it and more importantly, whether there is anything BT is doing to prevent it. It would be nice to be able to speak to somebody at BT about this but needless to say, if there is a telephone number, it's well hidden - unless of course you want to buy a BT product. Time to change provider and email address perhaps? 
  If you are still got a BT Yahoo email account then a worthwhile check is to login with your BTInternet email address using this Yahoo login to check your Login History
  http://api.login.yahoo.com/login/history
  If you have any logins that were not performed by you then it indicates that someone is using your account illegally.
  Note that the converse is not necessarily true.
  For security reasons do NOT tick the "Keep me Logged In" box.

• Changing email address that groupwise monitor sends alerts

  Hello
  Our GroupWise (7.0.3) Monitor is sending out alerts under the email address [email protected] . Our cell phone email providers is seeing that as a spoofed address and blocking. Where can I change this?
  Any help would be appreciated.
  Chris Toledo

  Originally Posted by Bob-O-Rama
  Go to the GW Monitor --> Configuration --> Notifications --> Mail Domain Name, which must be set to "yahoo.com" per your example
  By default it uses GWMON@[Mail Domain Name]
  Use the Test button to ensure your settings are OK.
  -- Bob
  That worked just fine! Thank you.

• Email address deleted!

  Well I am staggered by this - my wife's very long term email address which is on a sub account of mine was hijacked and used as the Sent From email in a spam situation.
  NOTE: not a virus on our computer at all, just someone copying the address and inserting it in the SENT from section when they send the spam from their computer. I've been in IT for 10 years and this is a very common spam tactic - you'll know when it happens as you'll start getting bounced emails back from people you've never ever contacted before. Usually it fizzles out after a few days when they move on to using someone else's email address.
  After a week of talking to BT I'm told that nothing can be done as they have now permanently deleted the email address and it can never be used again!
  As a very long term email address you will understand the havoc this causes!
  AND NOT OUR FAULT WHATSOEVER....
  So in other words be very wary about relying heavily on a BT email address as you could lose it at any time through no fault of your own!
  And once its gone that's it, you will instantly lose any incoming emails with no retrieval option.
  That is just ridiculous BT....  I was asked if I wanted to set up a new similar named email for her - em, no thanks, have gone to GMail. 

  mike777 wrote:
  Well I am staggered by this - my wife's very long term email address which is on a sub account of mine was hijacked and used as the Sent From email in a spam situation.
  NOTE: not a virus on our computer at all, just someone copying the address and inserting it in the SENT from section when they send the spam from their computer. I've been in IT for 10 years and this is a very common spam tactic - you'll know when it happens as you'll start getting bounced emails back from people you've never ever contacted before. Usually it fizzles out after a few days when they move on to using someone else's email address.
  After a week of talking to BT I'm told that nothing can be done as they have now permanently deleted the email address and it can never be used again!
  As a very long term email address you will understand the havoc this causes!
  AND NOT OUR FAULT WHATSOEVER....
  So in other words be very wary about relying heavily on a BT email address as you could lose it at any time through no fault of your own!
  And once its gone that's it, you will instantly lose any incoming emails with no retrieval option.
  That is just ridiculous BT....  I was asked if I wanted to set up a new similar named email for her - em, no thanks, have gone to GMail. 
  Hi. Welcome to the forums.
  As you say, the email account was spoofed in a spam run, and nothing can be done.
  Frankly why did you contact the BT support team ? Did you ask them to delete the email address ?
  I believe that most, if not all, the calls to the helpdesk are recorded, so if you know the time and dates of the call - perhaps you have see if the Mods can find out what was said. If you didn't ask for the email address to be deleted, then it was done without your permission.
  As it was a sub account, typically if deleted by the user, it will be in a state of limbo. Emails to it will not fail, but will be lost. However after 110 days I believe now, (it was 90 days), the email address becomes availablle again. It is only primary addresses that are permanently deleted and not made available again (though I it's possible they may becomre available after 7 years. I've not been able to find out).
  So - if the deletion was done in the usual manner, even by the support people, the address can either be re-instated, or perhaps the next best scenario be available to choose after 110 days from deletion.
  http://www.andyweb.co.uk/shortcuts
  http://www.andyweb.co.uk/pictures

• How an I prevent spoofed email using IronPort C160?

  As part of Security Awareness training and testing we contracted a company called knowbe4 to initiate some random spoofed e-mail tests into our domain.  Normally I would have figured this would fail because when email comes into the C160 and it has our @domainname.com on it, it needs to validate the DKIM signature, and if it was not sent from our organization, IronPort would not have signed it, correct?
  Anyway the security awareness organization was able to successfully send an e-mail inbound and make it appear as if it came from [email protected] (which we do not have a mailbox with that name, but I'm sure he certainly could have done research and used our real CEO's email address.).  In Outlook it does appear as [email protected] in the from box, but when you search message tracking for emails coming from that address you get nothing.  Upon further inspection of the e-mail headers, the message actually came from bounces+78188-4be9-username=[email protected]  So it matched policy DEFAULT for inbound mail policies and eventually it was successfully signed with domain key profile and DKIM profile matching [email protected], then queued for delivery.
  How can an email arriving from one server "morph" into another?  Is there some sort of vulnerability that this organization is taking advantage of, perhaps some kind of active script that the IronPort ends up acting upon to alter the email address and sign it so it passes through?  This was a test today, but we need to plug this hole because the bad guys are going to use this technique to make phishing emails look legitimate coming from internal users.

  I use knowbe4 as well, great phishing test templates, and what I found to work best to fight Domain spoofing are the following:
  - Implement DMARC/SPF/DKIM DNS records and keys - You will want to set these to passive initially. I personally recommend using dmarcian.com they have tools to help with implementation. Initially you will just want to be in monitor mode then start suggesting actions that gateways should take based on your DNS records. (This will protect your domain from being spoofed to gateway or provider that has DMARC/SPF/DKIM enabled)
  - Maintain your DNS SPF records (these are to used to help you authorize who can send emails from as your domains)
  - Here is a good how-to video for configuring your appliance to block domain spoofing. You will want to add any providers you want to allow to spoof such as ADP, training, and other third party vendors that generally spoof your domain to send emails to your employees. https://supportforums.cisco.com/video/11932126/configure-spoof-protection-exception-lists
  - Create a second mail flow policy similar to your allowspoof one, but turn off spam filtering, I called mine KnowBe4.
  - Create a new HAT and call that KnowBe4 and point it to the new policy. Add all the Knowbe4 or who ever your phishing simulation provider is to this HAT table. I suggest adding a description so you will know which ones to delete later on.
  You should now have taking care of e-mail spoofing, you will want to monitor this closely. Also if you are using Email Encryption you need to make sure the vendor's (even if using Cisco) gateways are added to your SPF record and your HAT table AllowSpoof list.
  Finally I would recommend enabling DMARC feature in your appliance, this will help filter out and report to email providers and gateways who is spoofing their domains, it will also increase your filtering power, but it does not stop all spam just one more thing to eliminate low hanging fruit.
  Knowbe4's test phish is a good way to test for spoofing, and your employees.

• Keep getting unreadable emails that say theyr'e sent from my email address sometimes every minute

  I keep getting undelivered mail with attachments which say they have come from me, its all rubbish with the words all messed about, the last one came from America, Is it because I don't have a spam folder so that they are sitting in my in box, and what do I need to do, as soon as I hover over them they open. how on earth do all these people have my email address. Any help please would be greatly appreciated.

  Yes, you've guessed it.
  Someone is abusing and using your email address.
  They are randomly sending to a load of email address which they hope will get a response. If any email address is not valid or blocking, then you will receive the Mailor daemon message that it is undelivered.
  This at least tells you that someone has used your email address.
  Do not respond to anything.
  Do not open any attachement.
  Delete those emails.
  Just in case any of your contacts have received one of these emails, you should alert them to the fact.
  Send them an email stating that someone is abusing your email address.
  Suggest you add a specific signature to your emails and tell your contacts that anything genuinely from you will have your signature. Tell them not to open an attachment and delete those emails. Usually, they do not even look like they came from the alledged sender.
  What you need to assess is whether this is just someone spoofing your email address (more common) or whether your computer or account have been compromised.
  Reboot computer in safe mode and run your anti-virus software.
  change passwords after checking no malware on computer - key logging etc.
  You cannot stop this kind of abuse.
  You can help to try to avoid this by never disclosing your email address in any forum etc.
  Sometimes people forward emails they think are amusing etc, but they do not remove the email addresses before forwarding, so after the email has been forward a zillion times, who knows how many people may end up knowing your email address.
  Good advise here:
  http://askleo.com/someones-sendin/
  http://www.pcworld.com/article/253305/minimize_your_exposure_to_email_spoofing.html

• Unauthorised use of email address

  I keep getting an email from [email protected] Delivery Notification: Delivery has timed out and failed. they are notifications of emails which  are not generated by me. They are being sent from other people using my email address.How can i stop my email address being used.
  thnx. Rich

  That's spam. They are spoofing your email addy as a return address and as the sender. No way to stop it because once the email gets on a mailing list, it is sold all over the world.
  I too have the same issue with my .mac email addy. I want to stop receiving only .mac addressed emails from being delivered as they are now 99% spam and nothing useful comes in that mailbox anymore.
  Anyone have an idea on how to stop ONLY .mac emails?? but not affect me.com or icloud.com since they are all tied together?
  Mike