Amusingly, this was sent to me *after* I replied to abuse@internap
complaining about getting spammed.
Anyone else getting spam from this joker? Has he been doing nanog
mailing list or arin database harvesting? Anyone know who his boss is?
-r
Why contact his boss? It's not like he's on a rogue e-mail campaign,
obviously the company told him to do this. Why not focus on more
significant spam?
Jeff
Jeffrey Lyon <jeffrey.lyon@blacklotus.net> writes:
Why contact his boss? It's not like he's on a rogue e-mail campaign,
obviously the company told him to do this. Why not focus on more
significant spam?
The "more significant spam" is largely handled by my anti-spam
measures. Cluing Internap in to the fact that I not only don't buy
from spammers myself but am more than happy to pass the word about
their unethical business practices is the honorable and right thing to
do. The fact that his e-mail campaign is approved by management does
not make it "non-rogue", it only means that upper management is rogue.
I have never been (nor now will I ever be) an InterNAP customer.
-r
Rob,
Sorry about that. Your e-mail address was on an old SalesForce list that we forgot to remove you from. I've followed up internally to make sure it won't happen again.
If anyone else gets any unwanted contact from us, please let me know and I'll make sure it's taken care of.
Thanks,
Scott
This spam came from the "icontact" spammers-for-hire: they're absolute
filth who have been abusing individuals and mailing lists for years.
I recommend blacklisting them permanently.
---Rsk
Rich Kulawiec <rsk@gsp.org> writes:
Amusingly, this was sent to me *after* I replied to abuse@internap
complaining about getting spammed.This spam came from the "icontact" spammers-for-hire: they're absolute
filth who have been abusing individuals and mailing lists for years.
I recommend blacklisting them permanently.
domains and/or cidrs, plz?
The spam appears to always come from icpbounce.com, so blocking that
on rDNS and/or HELO should suffice. Observed ranges are:
66.192.165.128/28
74.202.227.32/27
216.27.93.0/25
---Rsk
Just my tinfoil-coated 2 cents:
I tend to assume that when I get an email allegedly from Company A
(Internap) but actually sent by Company/Domain B (iContact), inviting
me to enter all kinds of sensitive information about my organisation's
operations into a "survey" hosted at Domain C (Zoomerang), in return
for which I may win a Dell laptop (but only if I give full
identity-theft-enabling details about myself), then I'm being socially
engineered by a Bad Guy, and I just press "delete".
I do this, even when Company A is a big well-known company (e.g. Sun
... it's happened) or an industry magazine (e.g. Secure Computing ..
ditto), cos lets face it .. who needs a Dell laptop anyway 
I urge everyone else to just do the same (at the very least it may
help to eliminate UCE merchants from the world).
Cheers
Nick
Just my tinfoil-coated 2 cents:
I tend to assume that when I get an email allegedly from Company A
(Internap) but actually sent by Company/Domain B (iContact), inviting
me to enter all kinds of sensitive information about my organisation's
operations into a "survey" hosted at Domain C (Zoomerang), in return
for which I may win a Dell laptop (but only if I give full
identity-theft-enabling details about myself), then I'm being socially
engineered by a Bad Guy, and I just press "delete".
That doesn't alter Company A's behavior, it reinforces it. As there
will be others who fall for it, passively hitting delete does nothing to
disprove Company A's idea that doing this type of thing is acceptable.
"It got some results and nobody complained." That's how spammers work.
Rather than JHD (just hit delete) please try to reach out to someone
with technical clue at Company A or their upstream.
I do this, even when Company A is a big well-known company (e.g. Sun
... it's happened)
Sun giving away Dell laptops? O RLY?
or an industry magazine (e.g. Secure Computing ..
ditto), cos lets face it .. who needs a Dell laptop anyway
I expect this type of crap from magazines. They've been playing fast
and loose with their customers' personal data for decades.
I urge everyone else to just do the same (at the very least it may
help to eliminate UCE merchants from the world).
Shaming them is IMHO more effective, although it takes more work.
I tend to assume that when I get an email allegedly from Company A
(Internap) but actually sent by Company/Domain B (iContact), inviting
me to enter all kinds of sensitive information about my organisation's
operations into a "survey" hosted at Domain C (Zoomerang) ... then
I'm being socially engineered by a Bad Guy, and I just press "delete".
[...]
Rather than JHD (just hit delete) please try to reach out to someone
with technical clue at Company A or their upstream.
Actually I _do_ do that quite a lot .... much to the amusement of some
colleagues who think I complain too much. I'm quite used to
contacting abuse@ and security@ teams anyway, so I often just treat
these emails as a security issue, and forward them to
security@CompanyA stating
"Someone is sending email claiming to be from your
company but it looks as if they're actually a completely
different organisation. You may want to look into this
as a possibly fraudulent activity against your employer.
If however these emails are genuine then my apologies
for wasting your time, but you may wish to forward my
email to the relevant marketing department, pointing
out how ineffective their campaign will be, due to the
number of recipients who will treat it as a scam."
However, as I'm sure you will have found, this often results in either
(a) no response, or (b) a tedious, painful response dialog with
various Company A staff who just don't get it. Only rarely do you get
to talk to Someone With A Clue who gets the required policy changes
implemented.
I do this, even when Company A is a big well-known company (e.g. Sun
... it's happened)Sun giving away Dell laptops? O RLY?
[grin] .... no, in their case it was a free iPod as I recall ...
wouldn't have minded one of those, except that they won't play OGG
media.
Shaming them is IMHO more effective, although it takes more work.
Trouble is, they're almost always outsourcing their campaigns, as part
of the western world's obsession with cost cutting by eliminating
in-house staff. The MBA whizz-kids who dream it up just won't listen
to anything but bottom line. "Incorrect domain name on the sender
address ?", they say, "... I'm afraid I don't see the significance.
I'm telling you now that ACME Mailshot Campaigns And Surveys Inc. is
fully authorised by us". [subtext: my bonus depends on the resulting
"savings"]
But yes, as and when I can bear it, I do what you suggest.
Keep the faith,
Nick