outlooksen.onmicrosoft.com

Spam report to ISP's abuse address bounces because spam is detected I was getting easily 100 phishing emails a day. * This is an old Hotmail account. * It appears in at least two lists of accounts from system compromises, posted on the dark web. * Now it acts as if it were a honeypot for phishing campaigns. At the start of February, I decided to send emails to ISPs notifying them that they have a customer violating their Terms of Service. * Save the email as text, retaining its original headers. * Redact the email, removing personally identifiable information. * Find the originating IP address and the time it was sent (including time zone). * Find the ISP for that IP address. * Find the abuse email address for that ISP. * Send the ISP the text of the email, the originating IP address and date and time, as well as an explanation of why you claim it is fraudulent (e.g., there's no Coinbase account associated with this email address) and your contact name and phone number. With the originating IP address, and date and time, the ISP can figure out who the customer is and at least warn them. Three strikes and terminate their account. It is in the ISP's best interests to get spammers and phishers off their network before the IP appears on a blacklist. Getting on a blacklist means other customers won't be able to use their service. Getting off a blacklist is a pain. This doesn't stop the spammers, who easily find another ISP who will sell them service. It's a shame that there's no coordinated repository of repeat offenders, so that they can be blacklisted. (I remember that someone asked how they get away with this; the absence of coordination explains a lot.) But first the spam has to be brought to the attention of the ISP. No, I don't do over 100 reports a day. Maybe 10. Still, I make some effort. Today I saw over 60 emails in my Hotmail account's "Junk Email" folder, before 8:00 AM. 57 of them were bounced emails. Bounced with the explanation: >Remote server ret

Spam report to ISP's abuse address bounces because spam is detected I was getting easily 100 phishing emails a day. * This is an old Hotmail account. * It appears in at least two lists of accounts from system compromises, posted on the dark web. * Now it acts as if it were a honeypot for phishing campaigns. At the start of February, I decided to send emails to ISPs notifying them that they have a customer violating their Terms of Service. * Save the email as text, retaining its original headers. * Redact the email, removing personally identifiable information. * Find the originating IP address and the time it was sent (including time zone). * Find the ISP for that IP address. * Find the abuse email address for that ISP. * Send the ISP the text of the email, the originating IP address and date and time, as well as an explanation of why you claim it is fraudulent (e.g., there's no Coinbase account associated with this email address) and your contact name and phone number. With the originating IP address, and date and time, the ISP can figure out who the customer is and at least warn them. Three strikes and terminate their account. It is in the ISP's best interests to get spammers and phishers off their network before the IP appears on a blacklist. Getting on a blacklist means other customers won't be able to use their service. Getting off a blacklist is a pain. This doesn't stop the spammers, who easily find another ISP who will sell them service. It's a shame that there's no coordinated repository of repeat offenders, so that they can be blacklisted. (I remember that someone asked how they get away with this; the absence of coordination explains a lot.) But first the spam has to be brought to the attention of the ISP. No, I don't do over 100 reports a day. Maybe 10. Still, I make some effort. Today I saw over 60 emails in my Hotmail account's "Junk Email" folder, before 8:00 AM. 57 of them were bounced emails. Bounced with the explanation: >Remote server ret