Curiously, my flow of Spam has mostly ceased, apart from the odd Bitcoin scam. However, my Spam Filter is still randomly marking perfectly good e-mails as spam, without any rhyme or reason for what it picks!
The date is the date of the spam batch that was delivered to the first smtp server . email addresses are harvested from know already data breaches .
The spammer uses an already compromised smtp server to to push out the spammed emails, Since this spammer sent out his emails through several smtp servers the first delivery date is that date I gave out .
Thanks for everyone’s input and glad your mail is now being caught.
One regular spam email I am getting has been sent from Brazil, Argentina and Slovakia, the server keeps changing for the same sender address, so the scammer is bouncing the spam all over the world via different servers.
Some countries do have scam reporting addresses, I have just forwarded a scam to brazil reporting address email@example.com
However some counties do not seem to have reporting addresses and the internet is un-monitored and prone to fraud so used by scammers probably using spambots on personal computers.
I also report to UK action fraud and file to the spam folder, and since doing that, my spam has reduced dramatically, some days get zero now.
(spoke to soon just got another dating email from Italy saying they have my user page with my details, getting those mostly now, this one is a new sender)
However I can not report to the USA, all come up as mail delivery fail on firstname.lastname@example.org
With a google search look for other countries not listed to report scam emails. Some can only be reported if a crime has been committed
Even though my email setting is unticked for -Allow HTML formatted email messages
I noticed first time ever if forwarding email to action fraud, the attached image displays as a thumbnail in the forwarded email to action fraud, picture of woman.
The concern here is the image may have a tracking pixel and code embedded, and should not be displayed, so the scammer is by-passing the virgin email settings and showing image when forwarding- perhaps this is a new tactic by hackers? (has never shown image before just empty box for image)
This concerns me as html is switched off???
The header of the email had was unusual very long,with many pages of dummy text added, it is enormous.
Is it still safe to forward these type of emails to action fraud using virgin web mail etc when html/images can appear even though html is switched off and email should be text only?
I have had this happen with thunderbird also where a forwarded email opens up the html/images even though set to read as text only version.
Thanks,for advice on .eml files. there is an option in thunderbird to save emails in that format, will try that.
My virgin ntlworld.com primary email now gets so many strange emails, for years now, so it has become a target for scammers, blackmail,dating and general crud, and I am transferring my contacts to other emails, the email is probably unsafe to use now due to hackings/dark web mailing lists etc.
Virgin do recognise and tag some as spam but I have stopped using the primary email now for communication but still get some valid emails from old accounts etc but eventually will discontinue using the primary and already have alternative emails which are not spammed.
Virgin do not permit the attached primary email to be swopped to a new address, so it will remain a target for spammers/scammers.
The hidden pixel that may be inside an image- switch images off to be safer.
SPAM EMAIL CAN BYPASS "VIEW IN TEXT ONLY" THUNDERBIRD mail and virgin web mail forwarding.
The scammers use images with tracking pixel probably or other html code.
A Dating email to my ntlworld.com email from Italy has managed to display an jpg image in thunderbird even though the view is set to read text only.
This may be because it was forwarded to action fraud and this action allows the image through and displays in thunderbird, so forwarding is the same as "allow images", so need to be aware of that one, also happens with apps on android. However the image does not show in the virgin webmail unless forwarded.
The reply is to click on the image of a woman, so the image may be hidden link or file posing as an image, but disguised as a jpg image.
These spam email are very dangerous and best just to delete or mark as spam, but even forwarding to action fraud can be risky.
It just needs one wrong click to be hooked by the scammer/hacker, so my intention now is just to not touch the spam at all just filter it to the spam folder.
DUPLICATE EMAILS- betting
Today got 3 x emails which "looked identical" but several minutes apart all tagged as spam, from a distribution list
On inspection, they were all from different ip address and a small difference in the layout and sender address some had an extra space.
Two sent by sendgrid, the other by mailgun. USA (perhaps they were trying to evade spam filters or I was on multiple distribution lists)
My advice is that spam emails are "extremely dangerous" and best not to even view them, just delete out or put to spam.
WARNING- danger of forwarding spam emails, even to action fraud-is it worth the risk, even though I have done it myself many times without issue got caught out today by a clever scammer.
Avoid forwarding spam emails in their raw state as this can allow images through, which may have hidden pixels and hidden links, code or exe files even where html/images is switched off- unless the advice of boothy99 is followed to save the email as an .eml file attachment.