The Four Horsemen of Finnish Spam

If you sent Finnish B2B spam recently…

  • Your spam is illegal if it does not identify the sender (Section 15 of the Business Information Act, 244/2001).
  • Your spam is illegal if it does not identify the spam list (Section 25 of the Personal Data Act, 523/1999).
  • Your spam list is illegal because it contains outdated and erroneous personal information (Section 9 of the Personal Data Act). If you bought a list, you can’t avoid this.
  • Your spamming is illegal because you hit natural persons with no business context (Section 200 of the Information Society Code, 917/2014). If you bought a list, it contains outdated and erroneous personal information and you can’t avoid this.

Bonus item:

  • If you own a product or a service and bought a spam campaign from somebody else, you are responsible for failures regarding the above even if you’ve never seen the materials.

Marriage made in Hell: Emaileri and Suomen Asiakastieto

It was reported in Finnish news about a week ago that Suomen Asiakastieto Oyj has purchased Emaileri. Apparently this is important enough to be reported elsewhere, such as in Financial Times.

Read more…

Why purchased lists are a big no-no

Over on the DotMailer blog, Lino Freire wrote an excellent piece on why purchased lists are a big no-no.

Thanks James Koons for sharing.

Take #2: B2B Prospecting Spam from IBM

Almost a month after I reported that a salesperson at IBM was sending B2B spam to a scraped or purchased list, the same individual spammed one of those email addresses again. As with this sender’s previous spam, the email was sent from IBM’s corporate mailservers, and specifically from a Lotus Notes system apparently used by their business development team.

Read more…

Snowshoe-like email verification and lead generation services

Many email verification and lead generation services act a lot like snowshoe spammers. They bounce around from host to host, hoping to avoid detection and suspicion caused by their unusual SMTP traffic.

Read more…

Long-term ESP performance in spamtraps

A collaborator inspired me to draw a few more graphs (you know who you are, and thank you very much for the idea).

I had retained the numbers for the ESP blogs ever since May, so it occurred to me that it might be pertinent to do a time series. The graphs are expressed in percentages against the total amount of ESP spam received, so the growth of total volume (for example, as a result of adding more spamtraps) is already accounted for. Since the data points are naturally mostly at the low end of the scale, a logarithmic scale seemed appropriate.

So, please find enclosed three graphs of ESPs appearing in spamtraps, divided into Transactional, SMB Marketing and Enterprise Marketing. The selection of ESPs and their division to these three categories is according to the ideas of the collaborator. NB. We only started tracing Zeta Interactive in August.
Read more…

Government action on spam

It is with delight that I have just read the ICO’s blog on its international work and how the UCENet (formerly London Action Plan) collaborates with MAAWG.

Looking forward to more of the same in San Francisco, Feb 20-23, 2017!

Why have a policy?

Excellent post from Mickey Chandler over on Spamtacular.com, one of the blogs we refer to in the sidebar: https://www.spamtacular.com/2017/01/04/back-to-basics-why-have-a-policy/

If you want to successfully deliver mail into the inboxes of your recipients, you must abide by the mailbox provider’s policy, and the ESP’s opt-in requirement simply exists in order to assist you in complying with the mailbox provider’s policy. In other words the ESP’s policy exists for one simple reason: To help you succeed.

KeyUp / Sivona / DSN / Spam-Sauvola

Please find enclosed a few recordings of harassing telephone calls made from +358-41-3633495, the registered telephone number in keyup.fi, Dysnomia Oy. The voice does not belong to “Katariina”, obviously, so it’s “Niklaus”, and even though their Finnish is not native (rather Estonian-influenced), it clearly isn’t spoken by Kenyans either (w.r.t. the registered owners of Dysnomia Oy) or Arabs (w.r.t. Mohammed Sahran, the registered owner of dsn.fi, one of their spamming domains).

Read more…

Go back to top