In common with a few other posters here, I run my own email server,
which I've configured to allow throwaway addresses:

eg



will come to me for any variation of stuff between the _ and @

Just had a rash of SPAM to two different email addresses - each address
has only been used with one company and not published.


One company is well know here but I'm going to do them the courtesy of
looking into it before I publish their name.

Just wondered if anyone else has noticed anything?

I am of course concerned that if my data has leaked, then perhaps credit
cards have too.

Tim Watts wrote:
In common with a few other posters here, I run my own email server,
which I've configured to allow throwaway addresses:

eg



will come to me for any variation of stuff between the _ and @

Just had a rash of SPAM to two different email addresses - each address
has only been used with one company and not published.


One company is well know here but I'm going to do them the courtesy of
looking into it before I publish their name.

Just wondered if anyone else has noticed anything?

Not recently but I have a list of about 20 addresses (companies) that
I've blacklisted for un-unsubscribable (IYSWIM) spam. Some of the
companies are quite reputable (e.g. Amazon, Macromedia, Which) and my
impression is that addresses were stolen by an employee or contractor,
indicating an internal security lapse by the company.

--
Mike Barnes
Cheshire, England

On 20/01/2015 15:01, Tim Watts wrote:
In common with a few other posters here, I run my own email server,
which I've configured to allow throwaway addresses:

eg



will come to me for any variation of stuff between the _ and @

Just had a rash of SPAM to two different email addresses - each address
has only been used with one company and not published.


One company is well know here but I'm going to do them the courtesy of
looking into it before I publish their name.

Just wondered if anyone else has noticed anything?

I am of course concerned that if my data has leaked, then perhaps credit
cards have too.
I get an increasing amount of spam, even on 2 email addresses I have
only ever used to banks. I have no idea whom they are from as I never
open them, they all have attachments. Usually they are spurious bills,
invoices and whatever.

On 20/01/2015 15:54, Jethro_uk wrote:
On Tue, 20 Jan 2015 15:01:59 +0000, Tim Watts wrote:

In common with a few other posters here, I run my own email server,
which I've configured to allow throwaway addresses:

eg



will come to me for any variation of stuff between the _ and @

Just had a rash of SPAM to two different email addresses - each address
has only been used with one company and not published.


One company is well know here but I'm going to do them the courtesy of
looking into it before I publish their name.

Just wondered if anyone else has noticed anything?

There is a lot of spam about today - mostly of the form:

Subject: Undefined transactions (need assistance) Ref: 1234566ABC

Randomly varying last part seems to get past the filters


I am of course concerned that if my data has leaked, then perhaps credit
cards have too.

Well they *will* be stored PCI-DSS compliant, won't they ?

It is conceivable that they were daft enough to be running Mickeysoft
products that the hostile malformed attachment was targeting and that
subsequently their zombie machines are now spamming customer lists.

I wouldn't necessarily hold it against them. I have had a few hundred
today mostly to old Usenet msgids but some to random strings. I know
someone who has already clocked up over a thousand and we are both
"protected" by at least two levels of antispam measures.

My local filters zap them without problem but the odd one has come
through to genuine and previously unpublished unique addresses.

Been a long while since it was this bad for spam getting through.

--
Regards,
Martin Brown

On 20/01/15 15:54, Jethro_uk wrote:

Well they *will* be stored PCI-DSS compliant, won't they ?



Hahahhahah.


Pop along to a security conference (eg SANS) if you want your hairs to
curl...

Even the big boys cannot get it right a lot of the time (eg Adobe and
RBS Worldpay with their massive data leaks). Now take this down to every
man-Jack and boy with a card reader. CC numbers written on post-its
stuck around the room, or logged dutifully in a customer address book.

/Just wondered if anyone else has noticed anything?/q

Now you mention it, lots of correctly addressed spam to one other corporate email addy in last 24 hours....

Jim K

On 20/01/15 16:00, Broadback wrote:

I get an increasing amount of spam, even on 2 email addresses I have
only ever used to banks. I have no idea whom they are from as I never
open them, they all have attachments. Usually they are spurious bills,
invoices and whatever.

I'm seeing a big jump in malware - sadly in the form of .doc and .xls
(etc etc) attachments.

Occasionally I run one through strings and it wants to do nefarious things.

If I had a time machine, I would go back and find the spakker who
thought it was a good idea to let document macros do stuff[1] outside of
their immediate document and punch him in the face.

eg open URLs, files etc.

I've just had some spam advertising Viagra. First one in years. Perhaps
they know I'm getting older. Or has the ISP spam filter expired the name?

--
*IF A PARSLEY FARMER IS SUED, CAN THEY GARNISH HIS WAGES?

Dave Plowman London SW
To e-mail, change noise into sound.

On 20/01/2015 16:00, Broadback wrote:
On 20/01/2015 15:01, Tim Watts wrote:
In common with a few other posters here, I run my own email server,
which I've configured to allow throwaway addresses:

eg



will come to me for any variation of stuff between the _ and @

Just had a rash of SPAM to two different email addresses - each address
has only been used with one company and not published.


One company is well know here but I'm going to do them the courtesy of
looking into it before I publish their name.

Just wondered if anyone else has noticed anything?

I am of course concerned that if my data has leaked, then perhaps credit
cards have too.
I get an increasing amount of spam, even on 2 email addresses I have
only ever used to banks. I have no idea whom they are from as I never
open them, they all have attachments. Usually they are spurious bills,
invoices and whatever.

I have had the same to 2 email addresses I have uniquely supplied to
Santander a few years back.

Is yours a different bank?

On 20/01/2015 17:29, Fredxxx wrote:

I have had the same to 2 email addresses I have uniquely supplied to
Santander a few years back.

Same here. Started getting them in November. The address was only ever
used for an old Abbey (now Santander) account which was closed about a
year ago.

--
Mike Clarke

On 20/01/2015 18:13, Mike Clarke wrote:
On 20/01/2015 17:29, Fredxxx wrote:

I have had the same to 2 email addresses I have uniquely supplied to
Santander a few years back.

Same here. Started getting them in November. The address was only ever
used for an old Abbey (now Santander) account which was closed about a
year ago.

Getting emails to an email address exclusively given for Alliance and
Leicester sort of confirms the haemorrhage of email addresses.

In message , Tim Watts
writes
On 20/01/15 16:00, Broadback wrote:

I get an increasing amount of spam, even on 2 email addresses I have
only ever used to banks. I have no idea whom they are from as I never
open them, they all have attachments. Usually they are spurious bills,
invoices and whatever.

I'm seeing a big jump in malware - sadly in the form of .doc and .xls
(etc etc) attachments.

Occasionally I run one through strings and it wants to do nefarious things.

If I had a time machine, I would go back and find the spakker who
thought it was a good idea to let document macros do stuff[1] outside
of their immediate document and punch him in the face.

eg open URLs, files etc.
Bill Gates?
--
bert

On 20/01/2015 15:17, Mike Barnes wrote:
Not recently but I have a list of about 20 addresses (companies) that
I've blacklisted for un-unsubscribable (IYSWIM) spam. Some of the
companies are quite reputable (e.g. Amazon, Macromedia, Which) and my
impression is that addresses were stolen by an employee or contractor,
indicating an internal security lapse by the company.

Which? apologised to me some years ago - their database was hacked. They
were the only people I've ever had that response from - everyone else
tries to tell me it must be my end. Even for an address specially
crafted for them. I've had nothing from amazon, and I have no contact
with Macromedia.

I too have been seeing munged email addresses - instead of my standard
andy@ I've seen andyn@ for some years; a bit later andynn@ turned up.
I've also seen goatqvcp@ and lao@ - I've never used them. The latest
batch seem to lose letters, so I've seen ndy@. Amusingly I've also seen
ndyn@ and ndynn@ - they've broken a bad address

I too am seeing the invoice ones. I have no idea what is in them, I've
never looked past the headers or even downloaded them.

Andy

On 20/01/15 21:48, Vir Campestris wrote:
On 20/01/2015 15:17, Mike Barnes wrote:
Not recently but I have a list of about 20 addresses (companies) that
I've blacklisted for un-unsubscribable (IYSWIM) spam. Some of the
companies are quite reputable (e.g. Amazon, Macromedia, Which) and my
impression is that addresses were stolen by an employee or contractor,
indicating an internal security lapse by the company.

Which? apologised to me some years ago - their database was hacked. They
were the only people I've ever had that response from - everyone else
tries to tell me it must be my end. Even for an address specially
crafted for them. I've had nothing from amazon, and I have no contact
with Macromedia.

I too have been seeing munged email addresses - instead of my standard
andy@ I've seen andyn@ for some years; a bit later andynn@ turned up.
I've also seen goatqvcp@ and lao@ - I've never used them. The latest
batch seem to lose letters, so I've seen ndy@. Amusingly I've also seen
ndyn@ and ndynn@ - they've broken a bad address

I too am seeing the invoice ones. I have no idea what is in them, I've
never looked past the headers or even downloaded them.

Andy

SWMBO who is a PCI/Security officer says I should dob all mine to the
Information Commissioner's Office (ICO) if I don't get taken seriously.

On 20/01/15 22:12, Tim Watts wrote:

SWMBO who is a PCI/Security officer says I should dob all mine to the
Information Commissioner's Office (ICO) if I don't get taken seriously.


He

https://ico.org.uk/concerns/

On 20/01/2015 22:12, Tim Watts wrote:
On 20/01/15 21:48, Vir Campestris wrote:
On 20/01/2015 15:17, Mike Barnes wrote:
Not recently but I have a list of about 20 addresses (companies) that
I've blacklisted for un-unsubscribable (IYSWIM) spam. Some of the
companies are quite reputable (e.g. Amazon, Macromedia, Which) and my
impression is that addresses were stolen by an employee or contractor,
indicating an internal security lapse by the company.

Which? apologised to me some years ago - their database was hacked. They
were the only people I've ever had that response from - everyone else
tries to tell me it must be my end. Even for an address specially
crafted for them. I've had nothing from amazon, and I have no contact
with Macromedia.

I too have been seeing munged email addresses - instead of my standard
andy@ I've seen andyn@ for some years; a bit later andynn@ turned up.
I've also seen goatqvcp@ and lao@ - I've never used them. The latest
batch seem to lose letters, so I've seen ndy@. Amusingly I've also seen
ndyn@ and ndynn@ - they've broken a bad address

I too am seeing the invoice ones. I have no idea what is in them, I've
never looked past the headers or even downloaded them.

Andy

SWMBO who is a PCI/Security officer says I should dob all mine to the
Information Commissioner's Office (ICO) if I don't get taken seriously.

Then she will see that you will be fobbed off, where the ICO will simply
say its a coincidence, and that spammer has just tried various
permutations/assumptions about possible email addresses and hit on one
you've provided.

On 20/01/15 22:16, Fredxxx wrote:

Then she will see that you will be fobbed off, where the ICO will simply
say its a coincidence, and that spammer has just tried various
permutations/assumptions about possible email addresses and hit on one
you've provided.

I agree WRT to PCI - I have not seen any meaning punishments dish out.

However, the ICO does seem to occasionally punish morons:

https://ico.org.uk/about-the-ico/new...ews-and-blogs/

On Tue, 20 Jan 2015 19:17:03 +0000, Fredxxx wrote:

On 20/01/2015 18:13, Mike Clarke wrote:
On 20/01/2015 17:29, Fredxxx wrote:

I have had the same to 2 email addresses I have uniquely supplied to
Santander a few years back.

Same here. Started getting them in November. The address was only ever
used for an old Abbey (now Santander) account which was closed about a
year ago.

Getting emails to an email address exclusively given for Alliance and
Leicester sort of confirms the haemorrhage of email addresses.

Same here. And the account was closed years ago.
--
(\__/) M.
(='.'=) If a man stands in a forest and no woman is around
(")_(") is he still wrong?

On Tue, 20 Jan 2015 21:48:42 +0000, Vir Campestris
wrote:

On 20/01/2015 15:17, Mike Barnes wrote:
Not recently but I have a list of about 20 addresses (companies) that
I've blacklisted for un-unsubscribable (IYSWIM) spam. Some of the
companies are quite reputable (e.g. Amazon, Macromedia, Which) and my
impression is that addresses were stolen by an employee or contractor,
indicating an internal security lapse by the company.

Which? apologised to me some years ago - their database was hacked. They
were the only people I've ever had that response from - everyone else
tries to tell me it must be my end. Even for an address specially
crafted for them. I've had nothing from amazon, and I have no contact
with Macromedia.

Same here. I use unique addresses for every organisation so it would
be clear which organisation leaked.

I too have been seeing munged email addresses - instead of my standard
andy@ I've seen andyn@ for some years; a bit later andynn@ turned up.
I've also seen goatqvcp@ and lao@ - I've never used them. The latest
batch seem to lose letters, so I've seen ndy@. Amusingly I've also seen
ndyn@ and ndynn@ - they've broken a bad address

Most of the spam is filtered before I see it but I haven't seen any
munged email addresses so far FWIW.
--
(\__/) M.
(='.'=) If a man stands in a forest and no woman is around
(")_(") is he still wrong?

Mark wrote:
On Tue, 20 Jan 2015 21:48:42 +0000, Vir Campestris
wrote:

On 20/01/2015 15:17, Mike Barnes wrote:
Not recently but I have a list of about 20 addresses (companies) that
I've blacklisted for un-unsubscribable (IYSWIM) spam. Some of the
companies are quite reputable (e.g. Amazon, Macromedia, Which) and my
impression is that addresses were stolen by an employee or contractor,
indicating an internal security lapse by the company.

Which? apologised to me some years ago - their database was hacked. They
were the only people I've ever had that response from - everyone else
tries to tell me it must be my end. Even for an address specially
crafted for them. I've had nothing from amazon, and I have no contact
with Macromedia.

Same here. I use unique addresses for every organisation so it would
be clear which organisation leaked.

Same here. I include the name of the organisation in the address. One
organisation queried that (did I really mean it?). Another organisation
actually *objected* to me using their name in my address, even after I
explained why I did it. The organisation? Which Legal. :-)

--
Mike Barnes
Cheshire, England

Fredxxx wrote:
On 20/01/2015 18:13, Mike Clarke wrote:
On 20/01/2015 17:29, Fredxxx wrote:

I have had the same to 2 email addresses I have uniquely supplied to
Santander a few years back.

Same here. Started getting them in November. The address was only ever
used for an old Abbey (now Santander) account which was closed about a
year ago.

Getting emails to an email address exclusively given for Alliance and
Leicester sort of confirms the haemorrhage of email addresses.

Connectedly, AFAICS the reason companies insist on us using
ever-more-complicated passwords is that they're afraid of their password
databases being stolen. Guessing a password over the internet would be
slow and easily detectable, but guessing a password using a stolen
database is a doddle.

--
Mike Barnes
Cheshire, England

On 20/01/15 15:01, Tim Watts wrote:
In common with a few other posters here, I run my own email server,
which I've configured to allow throwaway addresses:

eg



will come to me for any variation of stuff between the _ and @

Just had a rash of SPAM to two different email addresses - each address
has only been used with one company and not published.


One company is well know here but I'm going to do them the courtesy of
looking into it before I publish their name.

Just wondered if anyone else has noticed anything?

I am of course concerned that if my data has leaked, then perhaps credit
cards have too.

Credit cards are generally held in such a form that not even company
employees can read them.

I assume that every time I enter an email address on any company website
it will be globally available within hours.



--
Everything you read in newspapers is absolutely true, except for the
rare story of which you happen to have first-hand knowledge. €“ Erwin Knoll

On Wednesday, 21 January 2015 16:16:59 UTC, Mike Barnes wrote:
Same here. I include the name of the organisation in the address. One
organisation queried that (did I really mean it?). Another organisation
actually *objected* to me using their name in my address, even after I
explained why I did it. The organisation? Which Legal. :-)

"It's an anti-spam measure. Having the sending organisation name in the recipient name as well as the sending domain means the email doesn't get junked".

Although the spam I get tends to be to addresses I used on Usenet about 10 years ago.

Owain