Vivint: Selling Home Security to a Homeless… Spamtrap

Vivint, a company that develops and sells wireless home automation and home security systems, is sending bulk emails to an email address that as best I know never existed. The domain was a small domain and only one email address there normally receives any spam but pump’n’dump, botnet style pills, porn, and pirated goods. This isn’t that email address. The ESP is Lyris.

Sending IP:

Spam Sample:

Actual Headers:

Received: from ( [])
        by <xxx> (Postfix) with ESMTP id <xxx>
        for <xxx>; Sun, 11 Dec 2011 07:xx:xx -0600 (CST)
Received: from [10.0.xx.xx] ([10.0.xx.xx:xx] helo=<xxx>)
        by <xxx> (envelope-from <>)
        (ecelerity r(34222M)) with ESMTP
        id <xxx>; Sun, 11 Dec 2011 05:xx:xx -0800
To: <xxx>
Subject: =?utf-8?Q?Remote=20control=20lights,=20locks,=20thermostat=20and=2024x7=20security=20monitoring:=20$99=20activation?=
Date: Sun, 11 Dec 2011 05:xx:xx -0800
DKIM-Signature: <xxx>
DomainKey-Signature: <xxx>
X-EmailAdvisor: <xxx>
X-Delivery: <xxx>
Reply-To: reply-<xxx>
List-Unsubscribe: <mailto:unsubscribe-<xxx><xxx>>
Content-description: <xxx>
Message-Id: <<xxx>>
MIME-Version: 1.0
Content-Type: multipart/alternative;
From: "=?utf-8?Q?Vivint?=" <reply-<xxx>>

Readable Email:

From: Vivint <reply-<xxx>>
To: <spamtrap>
Subject: Remote control lights, locks, thermostat and 24×7 security monitoring: $99 activation
Reply-To: reply-<xxx>

Always be home for the holidays.

Call 855.616.6592 to enjoy enhanced security through home automation and $99 activation and $0 installation for a limited time


This message was sent by:
Vivint Inc. | simply smarter | 4931 North 300 West, Provo, UT 84604 | 855.616.6592
Copyright © 2011 Vivint Inc. All rights reserved.

Privacy policy.>

To unsubscribe from all of our mailings, send an email to: globalunsub-&ltxxx> with the adddress: &ltxxx> in the subject line.

3 Responses to Vivint: Selling Home Security to a Homeless… Spamtrap

  1. As of January 9, 2012, *still* selling home security to a homeless spamtrap, but now from ESP Eloqua. Did Lyris insisted that this customer clean its list, causing the customer (who did not want to risk loosing any email addresses) to move to a different ESP? Did Vivint tell Eloqua about its problems with Lyris? Inquiring minds and all that….

  2. Understood. 🙂 Eloqua is also a responsible ESP, and I suspect that they will want to know about this customer’s previous problem with you guys as well as the current spamtrap hit. I also know that at least one of their people monitors this blog because he’s responded to at least one issue.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Go back to top