Has OzBargain Been Hacked? Received Spam Email

I received email from [email protected] and its a SPAM email. Email here: https://imgur.com/a/Pca2FaE

Comments

  • +6

    Targeted.

    • Right at destination.

  • +3

    don't forget to claim cashrewards

  • +3

    Email address has probably been spoofed (rather than hacked).

  • +4

    View Source or Show Original (Gmail) and you'll be shown the email headers. The email address is spoofed which you can see in the code.

    See Reading Email Headers
    Email Spoofing

  • "From" email addresses are not hard to spoof and such fake emails are blocked by any basic spam filter. If the email made it past your spam filter, I would be a bit more concerned.

  • +5

    As per neil's comment, View original message and check the header. We have implemented both SPF & DKIM on @ozbargain.com.au domain so Gmail should report in the header that the email isn't going through our email server, which then flagged as spam.

    • What about DMARC?

      • We do have DMARC but the opt out from the reporting emails because there are just too many people trying to spoof ozbargain.com.au emails.

  • Ozbargain is now a household name so I can understand why the spammers would use it.

  • This is what I found

    Date: Fri, 17 Sep 2021 00:40:20 +0000
    To: XXX
    From: Confirmation, Confirmation <[email protected]>
    Subject: $ 94,486.73 has been received on your account-Confirm Payment ID: 19411685.
    X-Mailer: 219085.9840616
    Sender: <[email protected]>
    List-Unsubscribe: <[email protected]>
    X-IncomingHeaderCount: 11

    • you are probably more interested in the 'Received' header lines that should show where the email originated

    • +1

      From: Confirmation, Confirmation <[email protected]>

      Bingo!

      List-Unsubscribe: <[email protected]>

      lol

  • You got spam, mark it as such or if interested use https://toolbox.googleapps.com/apps/messageheader/

  • Being spammed with [email protected] too.