Spammers Replying To E-Mail You Did Not Send
Last year I came across a poster on Yahoo! Answers asking for advice on a strange e-mail she received. According to this poster she received a reply from someone on an e-mail she never sent. She immediately thought that the spammer hacked her e-mail account, sent an e-mail to himself and then replied to it. This is not impossible, but there are easier ways to do this, without hacking an e-mail account.
E-mails are plain text documents and can be modified and manipulated with a simple text editor like Notepad. The spammer simply saves any e-mail to a file, opens it with Notepad and puts your e-mail address in the From field. The spammer then imports it into an e-mail client and replies to this manipulated e-mail. This is only one of many ways to manipulate an e-mail message.
Spammers normally use a technique called hash busting. Hash busting is when you add random text at the beginning or at the end of an e-mail. The text makes no sense and consists of excerpts from books, articles and news bulletins. This text randomises the size, as well as the contents of the e-mail, making it hard for spam filters to find a pattern in the e-mail to base its filtering decisions on. For instance, an e-mail consisting of an image only will normally be flagged as spam, but if someone adds random text below the image, it changes the pattern of the e-mail and the spam filter can no longer use the criteria mentioned earlier to label the e-mail as spam. There are legitimate e-mails like this and the spam filter needs additional training to know which e-mails with embedded images, containing text below the image, are spam and which ones are not.
Some spammers realised that people became suspicious of the senseless text in spam e-mails, so they started to hide the text by making the colour of the text the same as the background colour. Other spammers make the size of the text so small that it appears like a horizontal line between paragraphs or at the bottom of the e-mail. The techniques used to conceal the hash buster text are easily detectable by a good spam filter because no decent person will send someone else an e-mail with hidden text or text that cannot be seen with the naked eye. So the spammers fail more often to get their e-mails through the spam filters when they use cloaking techniques like this.
Spammers needed a way to make the hash buster text look legitimate to the user as well as the spam filter. This is when they came up with the idea of pretending to reply to an e-mail message that was never really sent to them in the first place. The spammer creates the forged e-mail with hash buster text and then replies to it. The spammer still enjoys the benefits of the hash buster text coupled with a better chance to get past any spam filter, because the e-mail appears like a legitimate reply to a previous e-mail sent by the victim. A reply to an e-mail you sent to someone else is seldom unwanted and the spam filter will therefore be less suspicious about it, unless it contains specific keywords and phrases that trigger the spam filter.
But there are more consequences for the victim than just a spam filter not being able to filter the e-mail as spam. Spammers can include anything in these fake e-mails. They can even pretend that you enquired about one of their products. Instead of spamming you with an unwanted e-mail, they pretend to send you a reply to your initial enquiry, an enquiry you never sent. Abuse departments can easily use this as an excuse not to take action against the spammer. They may argue that the spam victim did not receive an unwanted commercial e-mail, because the victim enquired about something and the accused simply replied to that enquiry. Luckily abuse departments need to prove that the original e-mail was really sent before rejecting the complaint, but we all know that very few abuse departments actually take any spam reports serious these days.
It is because of the lack of proper legislation and poor implementation and enforcement of existing legislation that we have to deal with waves of spam every day. We are constantly one step behind cyber criminals and our current spam filters cannot keep up with all the tricks and techniques used by spammers to force their junk down our throats. There is a widespread appeal for better filtering and alternative communication methods. There is merit in developing better spam filters, but how do you replace a communication medium like e-mail without disrupting individuals and businesses that depend on it every day to stay in contact with friends, family and clients? Whats the use of taking away a communication medium if you do not take action against the individuals who abuse it? It will only be a matter of time before spammers start to abuse the system replacing e-mail. You need to take action against the root of the problem and not the infrastructure through which the problem occurs.
About the Author
Coenraad is webmaster and founder of Cyber Top Cops, leaders in Internet security, prevention of online fraud and educating users about online scams and malicious software. Visit Cyber Top Cops Articles: The Latest In Cyber Security for more articles related to cyber security.
E-mail Junk Mail Thursdays?
Most Spammers and even the more legitimate ones use Thursdays as their Spamming Days. Have you noticed that you get the most ...
Stop Email Abuse by using Antispam Software
E-mail has now been misused and one proof is the existence of spam e-mail. It is irritating to see that your mailbox is full ...
Who are Spammers
Most of us receive spam at one time or another. A spammer is someone who sends unsolicited e-mails in bulk to people who have...
Get Rid of Spam
Spam is referred as unsolicited commercial mail addressed to you and especially when you have not asked any such email from t...
Five Golden Rules For Dealing With Spam
Spam is a term used to describe the sending unsolicited messages indiscriminately in bulk by means of electronic media. E-mai...
The Key To Beating Spam
Spammers have changed their tactics a lot over the last few years and the amount of spam circulating the Internet is rising a...
Shall We Ever See the End of Spam Email?
In 2003 Bill Gates head of Microsoft predicted and end to spam within 2 years!It never happened, or came even close - in fact...
Online Job Seekers–Beware of SPAM!
What is a Spam?? Its a four lettered word which plays a havoc trick in cheating your time and money by luring you with unwant...
Russian Spammers Learning English to SPAM Your Inbox
How do Russian Spammers get customers in the Western World? Well unlike many of the illegal aliens here coming from Mexico th...
Filter Spam Make Spam Get Out Of your Inbox
How much time do you spend every day to delete spam or read them? Definitely a sizable amount of the precious productive time...
Six Tips to Get Rid of Spam Email
1. Ignore Spam EmailDo not open an unsolicited email. Spammers are just playing a numbers game. They simply send out like a m...
What if We Stopped SPAM?
What if we could defeat SPAM? What if no one could hijack a Zombie Computer? What if SPAM did not come from half way around t...
All About Spam and How to Control It With Anti Spam Software
The most common complaint that internet users have is regarding the large amount of unsolicited junk mail they receive. This...
What is the Can Spam Act?
The Can Spam Act was passed in 2003 and was one of the first laws to control spam. There is much controversy surrounding this...
What is a Spam Zombie?
A spam zombie is a computer that has been illegally accessed by a spammer and used as a medium to send spam. This is done wit...
What You Must Know About Spam
What Is Spam?When referring to emails, according to the NCES (National Centre for Education Statistic), "Spam refers to elect...
Wham Bam Spam And Scam
Every day, I get several hundred e-mails, some days over a thousand. A lot of these are spam - according to a recent Doublecl...
I Get No Spam, And Cannot See What All The Fuss Is About!
When you talk to friends and work colleagues about email, the internet and spam some may brag they get no spam - suggesting t...
Direct Mail Marketing to Shape Public Opinion
Direct-mail marketing works for so many things and it works in nearly all types of businesses. Targeted direct-mail advertis...
Spam Sources: How To Avoid Them
Too tired of deleting junk mails in your email box? Junk emails and spam are becoming a great and aggravating problem in the...