From time to time I receive emails telling me that my original message couldn’t be delivered. There are various reasons for receiving such an email. In most cases it is because the recipient’s mailbox was full or there was a typo in the recipient’s email address. But sometimes the reason gets a bit more dramatic.
Sending a Fake Message
Sending out an email is a trivial task. However, it is an equally trivial task to send out a fake email in which a third party uses your email address to send out their scam messages — this is called
To try this out, all you need to do is install a WordPress plugin called Contact Form 7. After you add the plugin to your WordPress installation, simply make the following settings at
Remember to pair up things in the
When you are done, click
[contact-form-7 id="100" title="Contact form 100"]
Copy the shortcode for your contact form and paste it into a page on your website.
The result will be very similar to this:
As you can see, I am able to enter whatever email address I wish to the
And once I click
As you can see, taking up someone’s identity via email is ridiculously easy.
Obviously, professional scammers will try their best to make you click on a link in their scam messages.
They will be posing as representatives of a social media site, bank, the department of justice, or some other serious institution. And they will most often use scare tactics, claiming that your account was hacked or that you need to fill out a form to avoid being sued or something else of the kind.
They want you to click on a link because that link will ultimately lead you to their target destination, where they will try to steal your identification information, banking information, or upload malware to your computer in order to make you pay ransom.
The ultimate goal of scammers is almost always theft and money. The sad reality is that these tactics, also called
Analyzing Email Messages
To find out whether an email is really coming from the person who is presented in the
A few days ago, I received a response message sent to me because of a failed delivery attempt:
This message was created automatically by mail delivery software.
A message that you sent could not be delivered to one or more of its recipients. This is a permanent error. The following address(es) failed:
SMTP error from remote mail server after RCPT TO:<firstname.lastname@example.org>:
host mx.libero.it [22.214.171.124]: 550 Invalid Recipient [smtp-07.iol.local; LIB_520]
Obviously, I didn’t send the message in the first place. So I decided to look under the hood of this email.
To analyze an email in Mozilla Thunderbird, click on the
Look for a line beginning with
This is what came up in my case:
I also identified the hosting company via which the scam originated:
From: Mail Delivery System <Mailer-Daemon@zvh29.mirohost.net>
The message body contained a link claiming to take me to a great porn video. Well…
Results of the Analysis
So this is what happened or at least this is what the data I collected points to.
A Russian or Ukrainian scammer was sending out spam using my email address as the return address. He used an Ukrainian winery’s hacked web site as the send-out platform. He inserted a link into the message that seemed to lead to a German orthodontist’s website. Clearly, the poor orthodontist’s website was also hacked because the latter part of the URL was gibberish. So the scammer’s target destination was somewhere else and only those who clicked at the fake porn link got redirected there. I can only guess what awaited them there instead of a porn video — some malicious code ready to be uploaded to their computers, a fake form for their identification data, or something else but equally bad.
Rules of Staying Safe
The above paragraph shows why it is crucial not to get your website hacked.
It also shows that it is good and necessary to use spam filters in your email programs.
It also shows that the best way to avoid getting scammed is to be extremely cautious and responsible when opening email messages.
Here are a few rules that should shield you from most scammers:
- run up-to-date antimalware software on your computer that is continually looking for threats
- use anti-spam add-ons, plugins, extensions, or other similar measures in your email programs
- when an email seems fishy, don’t click on any links in it
- when an email seems out of order, don’t download any attachments from it
- whenever in doubt, check the email’s source to see where it originated and where would the links lead you
- if the links seem suspicious, use Google or the Internet Archive to check up on the target website
- if the link is clearly gibberish, you can bet that it will redirect you to a different website that is controlled directly by the scammers, such as a fake banking website
Sooner or later everyone receives a scam email message. Better be prepared for it.
Liked this post?
Subscribe to our newsletter to receive early notification of new posts and deals: