Results 1 to 5 of 5
  1. #1
    New Lounger
    Join Date
    Dec 2009
    Location
    Los Angeles, California, USA
    Posts
    4
    Thanks
    0
    Thanked 0 Times in 0 Posts
    My personal e-mail address has been spoofed (not hacked). It has been used by crooks purporting to sell Viagra from a site in Russia, and uses my address as their "from" e-mail address. Now, another crook is doing the same with a work-from-home scheme. Again, this is not "hacked"...that is, they did not break into my account and they are not sending to my address list.

    I've contacted my ISP, http://1and1.com, and they offer nothing. I understand there is a process called SPF that has some impact on preventing spoofing, but it is not offered by 1and1. http://faq.1and1.com/e_mail/general/9.html

    I researched this when it first occurred a few years ago, and found there was nothing that anyone is doing on about this issue, other than--as I understand--the weak and underutilized Sender Policy Framework.

    I even "turned off" my personal e-mail address for several months, and that still did not resolve the problem. The address in question is my name, so that makes this issue very difficult for me.

    What is the current state of anti-spoofing efforts? Is there any hope?

  2. #2
    Super Moderator BATcher's Avatar
    Join Date
    Feb 2008
    Location
    A cultural area in SW England
    Posts
    3,421
    Thanks
    33
    Thanked 195 Times in 175 Posts
    Quote Originally Posted by Michael Barnard View Post
    What is the current state of anti-spoofing efforts? Is there any hope?
    I would suggest that the only practical way to resolve this is to use a different email address, abandoning the old one. Infuriating, but that's the way things are.
    BATcher

    Time prevents everything happening all at once...

  3. #3
    Super Moderator CLiNT's Avatar
    Join Date
    Dec 2009
    Location
    California & Arizona
    Posts
    6,121
    Thanks
    160
    Thanked 609 Times in 557 Posts
    I agree with BATcher, change you email address.
    Maybe consider more than one email accout too; One for trusted usage, and one for not so trusted usage and
    internet business.
    DRIVE IMAGING
    Invest a little time and energy in a well thought out BACKUP regimen and you will have minimal down time, and headache.

    Build your own system; get everything you want and nothing you don't.
    Latest Build:
    ASUS X99 Deluxe, Core i7-5960X, Corsair Hydro H100i, Plextor M6e 256GB M.2 SSD, Corsair DOMINATOR Platinum 32GB DDR4@2666, W8.1 64 bit,
    EVGA GTX980, Seasonic PLATINUM-1000W PSU, MountainMods U2-UFO Case, and 7 other internal drives.

  4. #4
    5 Star Lounger RussB's Avatar
    Join Date
    Dec 2009
    Location
    Grand Rapids, Michigan
    Posts
    803
    Thanks
    10
    Thanked 50 Times in 49 Posts
    I would change to a different ISP.
    Do you "Believe"? Do you vote? Please Read:
    LEARN something today so you can TEACH something tomorrow.
    DETAIL in your question promotes DETAIL in my answer.
    Dominus Vobiscum <))>(

  5. #5
    WS Lounge VIP
    Join Date
    Dec 2009
    Location
    Earth
    Posts
    8,207
    Thanks
    49
    Thanked 989 Times in 919 Posts
    The "from" address is just text and can be set to anything you like as long as it's in the form text@text.validextension. I use me@mymail.com for testing mail systems. Your address is being used because it was harvested from an infected PC / hacked webmail address book. Changing email or ISP will not stop your address being used.

    There is no hope that spoofing will stop any time soon as there is no agreed standard to guarantee an email is from an authorised source - there are several competing "standards" but they all have limitations and would require global implementation in one go.

    cheers, Paul (bearer of bad tidings)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •