Jump to content
EkriirkE

Encoded/segmented subjects and bodies are not stripped of emails

Recommended Posts

Posted (edited)

Spammers are tracking back who reports them by including the emails that get back to them via spamcop reports in the subject and body, example: 

encoded and segmented subject:  https://www.spamcop.net/sc?id=z6641797254z619187ae372c6cec5509fadaf926d2baz

segmented body: https://www.spamcop.net/sc?id=z6641801254z40077f70be652e542cfe9e7deb51e5faz

My email is still visible.  Note the first example is targeted at me directly for reporting them subject "You make compliant on Spamcorp my.visible.email erville?..." with a confusing body that pieces together a personalized message:

Quote

You make compliant on Spamcorp
Why?
There is Unsubscribe Link
Why?
We lost 0.5usd due to your compliant
But you will receive many email everyday
from now on

 

Edited by EkriirkE

Share this post


Link to post
Share on other sites
9 hours ago, EkriirkE said:

Spammers are tracking back who reports them by including the emails that get back to them via spamcop reports in the subject and body, example: 

encoded and segmented subject:  https://www.spamcop.net/sc?id=z6641797254z619187ae372c6cec5509fadaf926d2baz

segmented body: https://www.spamcop.net/sc?id=z6641801254z40077f70be652e542cfe9e7deb51e5faz

My email is still visible.  Note the first example is targeted at me directly for reporting them subject "You make compliant on Spamcorp my.visible.email erville?..." with a confusing body that pieces together a personalized message:

 

Report them again cost them another $5
They have your email address anyhow
Online criminals continue to distribute spam and carry out scams - even with the Chinese government involved. 

Share this post


Link to post
Share on other sites
On 7/13/2020 at 12:17 PM, EkriirkE said:

My email is still visible.  Note the first example is targeted at me directly for reporting them subject "You make compliant on Spamcorp my.visible.email erville?..." with a confusing body that pieces together a personalized message:

Most ISPs don't go in and decode the base64.  For those that do or might, I just decode it, strip out my address, and then reencode it.  This might be a good feature to have and there are perl modules that can decode/encode it.

Share this post


Link to post
Share on other sites
On 7/13/2020 at 8:37 PM, petzl said:

Report them again cost them another $5
They have your email address anyhow

Obviously, but I'd rather minimize confirmation of receipt

Share this post


Link to post
Share on other sites
7 hours ago, EkriirkE said:

Obviously, but I'd rather minimize confirmation of receipt

Not disagreeing 
However the worst I get is being listwashed

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

×