Windows Secrets

Subscribers: Sign in

Enter your e-mail address to get a free subscription.
We guarantee your privacy
Skip to content
  • Home
  • Newsletter Archives
    • Current
    • LangaList Plus
    • Patch Watch
    • Wacky Web Week
    • Security Baseline
  • E-Books
  • Lounge
  • About us
    • Refunds
    • Privacy Policy
    • Advertise
  • Contact
  • Your Account
    • Upgrade
    • Preferences
    • Bonus Download
    • Unsubscribe
Home>LangaList Plus>Is your ISP in cahoots with spammers?

Is your ISP in cahoots with spammers?
Tweet

Fred langa By Fred Langa

Ever wonder if someone’s mining your ISP’s mail server for addresses?

Here’s one way to test for malfeasance at your mail server — and I’ll show you several other ways to keep your e-mail address out of the wrong hands.


No good deed goes unpunished

You’ve heard the saying, “No good deed goes unpunished.” That’s the situation reader Fred Stone found himself in when he started to get phishing e-mails after helping set up a friend’s PC:
  • “While helping a friend get active with his new ISP and get Thunderbird configured, I created an e-mail address for testing in his account. This address has been used to send or receive maybe 12 messages. Today, I received a phishing message. Since this address should be unknown and has only been sent to about 5 of my various e-mail addresses, the question is how does this get in the hands of phishers? Are folks sitting there monitoring all the Net traffic, culling addresses?”
It’s possible that something’s not right at the ISP (e.g., someone there is snooping the mail server or monitoring the packet streams for spammable/phishable addresses). In a moment, I’ll show you how to test to see if that’s happening. But it’s more likely that e-mail address-harvesting is happening elsewhere. Let’s first look at the more likely explanations for the phishing e-mail you got.

Because you’re a Windows Secrets reader, your own system is probably well protected against spyware and other malicious software. But your friend’s PC may not be.

Although e-mail harvesting via malware is less common than it once was, it can still plague unprotected PCs, especially the systems of less sophisticated users. Once address-harvesting malware gets onto a system, it can quietly monitor the e-mail addresses in an address book and in the In and Out boxes, periodically sending the gathered addresses to a phisher or cracker. Similarly, any of several kinds of keystroke-capture malware could also be collecting data off your friend’s PC and periodically phoning home to the malware’s creator.

You no doubt already know of the many excellent tools (both free and paid) that can protect a PC from spyware and similar nasties. But you might want to help your friend check to make sure his PC is clean, and help him install protective software to prevent any future infections. For specific product recommendations, see the WSN Security Baseline.

You said the suspect e-mail account was used only to send a few test messages, so this following item may not apply. But, for completeness, I should also mention that a very common means of address harvesting has nothing to do with e-mail per se. It’s the disclosure of your e-mail address on chat rooms, message boards, auction sites, or other Web pages; or by placing an order online with a less-than-scrupulous business.

This article is part of our paid content. Subscribe.

Already a paid subscriber? Click here to login.

Related posts:

  1. Hide (Obscure) Your Address From Spammers
  2. Legit Way To Counterattack Spammers
  3. Pro/Con Re: Counterattacking Spammers
  4. Free IBM spam filter spams spammers
  5. You can’t trust that From line
= Paid content

All Windows Secrets articles posted on 2007-12-13:

  • Introduction Have a question? Ask Fred Langa!
  • Top Story MagicJack promises dirt-cheap phone calls
  • Known Issues Windows Home Server is not ADS-friendly
  • Wacky Web Week Never leave home without it!
  • LangaList Plus Is your ISP in cahoots with spammers?
  • PC Tune-Up Will Vista SP1 improve your performance?
  • Patch Watch Office 2007 SP1 surprises Vista SP1 beta users
  •  Show all articles on a single page
Fred Langa

About Fred Langa

Fred Langa is senior editor. His LangaList Newsletter merged with Windows Secrets on Nov. 16, 2006. Prior to that, Fred was editor of Byte Magazine (1987 to 1991) and editorial director of CMP Media (1991 to 1996), overseeing Windows Magazine and others.
View all posts by Fred Langa →
E-books

We’ve pored through years of back issues, picking the best tips, to create these ebooks:

E-book series
  • PC Maintenance Guide
  • PC Security Guide
  • Windows 7 Guide Vol 1
  • Windows 7 Guide Vol 2
  • Win XP Survival Guide
See the e-book series
Top-scoring articles in the past 12 months
  • Leaving long cookie trails throughout the Web 5.00
  • Windows-like security for Android devices 5.00
  • Win7′s no-reformat, nondestructive reinstall 4.53
  • The sorry tale of the (un)Secure Sockets Layer 4.42
  • RPV: Win7′s least-known data-protection system 4.33
  • Recovery: the last step in total data security 4.30
  • Time for a .NET update we can’t ignore 4.30
  • Getting the most from Windows Search — Part 1 4.25
  • Revising printing habits saves money and trees 4.25
  • Upgrades end in erratic, partial hangs 4.25
  • Pros and cons of a ‘keyfile’ password 4.21
  • Beating back Duku and a plethora of other threats 4.20
  • Office 2007 gets its final service pack 4.19
  • Putting Registry-/system-cleanup apps to the test 4.19
  • One year and 99 security bulletins later 4.18
  • 1.8TB external drive goes down hard 4.17
  • Don’t pay for software you don’t need — Part 3 4.16
  • Internet Explorer gets another round of patches 4.15
  • Is your free AV tool a ‘resource pig?’ 4.15
  • Vacation’s over; it’s a big round of patches 4.15
  • Remote access leads to remote attacks 4.15
  • Keeping you up to date: say no to .NET — again 4.14
  • Take control of Google’s privacy policy settings 4.14
  • Office File Validation patch leads to problems 4.14
  • The advanced system-recover toolkit 4.13
  • New “419″ scam involves PayPal and Western Union 4.12
  • Readers’ best personal-privacy tips 4.11
  • Getting the most from Windows Search — Part 2 4.11
  • Re-examining Dropbox and its alternatives 4.10
  • Easily edit Windows’ right-click context menus 4.09
Connect with us Follow us on Twitter Connect with us on Facebook View our RSS Feeds
  • Home|
  • Newsletter|
  • About Windows Secrets|
  • Advertise with us|
  • Unsubscribe|
  • Sitemap|
  • Affiliates|
Trademarks: Microsoft and Windows are registered trademarks of Microsoft Corporation. The Windows Secrets series of books is published by Wiley Publishing Inc. The Windows Secrets Newsletter, WindowsSecrets.com, WinFind, Windows Gizmos, Security Baseline, Patch Watch, Perimeter Scan, Wacky Web Week, the Logo Design (W, S or road, and Star), and the slogan Everything Microsoft Forgot to Mention all are trademarks and service marks of iNET Interactive. All other marks are the trademarks or service marks of their respective owners.
iNET Interactive Copyright © 2011 iNET Interactive.
All rights reserved.
Terms of Use  |  Privacy Policy
Internet Services
  • Web Hosting Talk
  • HostingCon
  • Hosting Catalog
  • Host Voice
Web Development
  • Hot Scripts
  • DB Forums
Digital Marketing
  • ABestWeb
  • Search Marketing Standard
  • PayPerClickUniverse
  • SEMCompare
Consumer Tech
  • Windows Secrets
  • Overclockers
  • Mac Forums

Learn more about
advertising opportunities across the iNET Interactive Network.

LiquidWeb