Another three-month look at Spamtraps: ESPs – July, August, September 2018

July to September 2018 in Spamtraps: ESPs

July to September 2018 in Spamtraps: ESPs

We had an unexpected participant in Hobsons, who traditionally send effectively nothing to us, only just about enough for us to have recognized that they even exist. It appears their network space is shared between the ESP and some other branch of their operations. The servers of the non-ESP operations were misconfigured on April 10 shortly before 8 pm UTC and started spewing out backscatter (bounces of spam to the forged sender addresses). This went on until 9/11 @ 11 am UTC, peaking in July.

With Yesmail, the money mule spammers (subjects: “New offer”, “New vacancies in our company”, “Interesting work”, “Staff Wanted”, “Good day!”, “Hello!”, “Interesting offer”, “Welcome to our company”) started appearing in April, peaked in July, and were effectively out by September. The numbers of this type of spam on any other ESP platform are never measured in more than the single digits.

Worst senders:

  1. SendGrid: Advisor Perspectives, by a margin of more than 2x to the next contestant, month after month (with a slight nod in the general direction of Airbnb in July)
  2. SMC/ExactTarget: Kohls (only barely), with Marcus Millichap popping up in September
  3. MailChimp: Advisor Perspectives (WTH?)
  4. Oracle: Nordstrom (only barely)
  5. Mailgun: The Italian affiliate spammers (see previous blogs)
  6. Yesmail: After the money mule trash, mktgdillards.com
  7. Amazon SES: jobalert123.com
  8. CheetahMail: shopbonton.com, loft.com, emailtuesdaymorning.com (all almost below the noise floor)
  9. Constant Contact: 123dj.com (only barely)
  10. IBM: tjx.com, renewlife.com
  11. Mapp: conservativeintel.com
  12. Epsilon: DICK’S Sporting Goods, Inc.

June 2018 in Spamtraps: ESPs

ESP spam seen in spamtraps, June 2018

ESP spam seen in spamtraps, June 2018

Read more…

A three-month look at Spamtraps: ESPs

Good morning, Munich…

A four-month look at Spamtraps: ESPs

November 2017 to February 2018 in Spamtraps: ESPs

Nuff said. All the data is there and questions are welcome, either in comments to this article or in other avenues. Just haven’t gotten around to writing it up.

October 2017 in Spamtraps: ESPs

ESP spam seen in spamtraps, October 2017

ESP spam seen in spamtraps, October 2017

Read more…

The Four Horsemen of Finnish Spam

If you sent Finnish B2B spam recently…

  • Your spam is illegal if it does not identify the sender (Section 15 of the Business Information Act, 244/2001).
  • Your spam is illegal if it does not identify the spam list (Section 25 of the Personal Data Act, 523/1999).
  • Your spam list is illegal because it contains outdated and erroneous personal information (Section 9 of the Personal Data Act). If you bought a list, you can’t avoid this.
  • Your spamming is illegal because you hit natural persons with no business context (Section 200 of the Information Society Code, 917/2014). If you bought a list, it contains outdated and erroneous personal information and you can’t avoid this.

Bonus item:

  • If you own a product or a service and bought a spam campaign from somebody else, you are responsible for failures regarding the above even if you’ve never seen the materials.

September 2017 in Spamtraps: ESPs

ESP spam seen in spamtraps, September 2017

ESP spam seen in spamtraps, September 2017

Read more…

August 2017 in Spamtraps: ESPs

ESP spam seen in spamtraps, August 2017

ESP spam seen in spamtraps, August 2017

Read more…

July 2017 in Spamtraps: ESPs

ESP mail seen in spamtraps, July 2017

ESP mail seen in spamtraps, July 2017

Read more…

June 2017 in Spamtraps: ESPs

ESP mail seen in spamtraps, June 2017

ESP mail seen in spamtraps, June 2017

Read more…

Go back to top