Summary: Email spoofing is rampant. Spammers often send email that looks like it came from you. And there's little you can do about it.
|
Someone's sending from my email address! How do I stop them?! |
You're minding your own business and one day you get email from someone you've never heard of and they're asking you to stop sending them email. Or worse, they're angry. Or worse yet, they accuse you of sending them a virus! But you don't know them, you've never heard of them, and you know you've never sent them email.
Welcome to the world of viruses where you can get the blame for someone else's infection. And there's worse news to come.
•
Before I get to that, there is always a small possibility that your email account has been compromised. The solution there is simple: change your password immediately. That should prevent someone who's using your account for malicious purposes from continuing, assuming you've chosen a good password.
But these days that's not the most common cause for the situation I've described, viruses are. And what's worse, there's almost nothing you can do.
The MyDoom/Novarg virus currently running rampant is a great example. The virus infects someone's machine and then looks in the email address book on that machine and emails a copy of itself to everyone it finds. What it also does is forge the "From:" address for the email that it sends. What does it use to forge the address? Why, the addresses in the address book, of course. So the infected machine will send email to everyone in the address book, looking as if it was sent by other people in that address book even though it was not.
Let's use a concrete example: Peter's machine gets infected with the MyDoom virus. In his address book are entries for friends Paul and Mary. Paul and Mary have never met, have never exchanged email, and do not know each other - they each just know Peter. The virus on Peter's machine will send email with the virus to Paul looking like it came from Mary. Paul may wonder who the heck this Mary person is and why she's sending him a virus, but she was never involved.
If you're in Mary's place, you can see that it would be frustrating to be accused of something that you had nothing to do with and have no control over.
For the record, your email address may end up in the address books of people you don't know as well. Various email programs will automatically hold on to additional email addresses that were included on email you received or possibly from email that was forwarded. Viruses have also been known to use other sources of email addresses or even forward them around as the virus spreads. What that means is that the simple "friend of a friend" example I used with Peter, Paul and Mary, while simple and certainly possible, is not the only way your email could show up as a forged "from" line.
What's important here is simply this: one way or another email viruses lie about who sent them.
If someone accuses you of sending a virus-laden email, and you are positive you did not, then you have very little recourse other than trying to educate them about how viruses work. Point them at this article if you like. But be clear: you're not necessarily infected nor is the person who received the mail claiming to be from you. It's some third party who is. (And identifying that third party is difficult - this is why virus writers use this technique.)
And of course be sure that you're not going to get infected yourself: don't open attachments from people you don't know and make sure you have an up-to-date virus checker and virus definitions file. I have recommendations for virus scanning software here.
Related:
-
Someone has stolen my email account. What can I do to get it back? The outlook is grim if your email account has been stolen, but there are a couple things that you can try to do to recover it.
-
How do I keep my computer safe on the internet? Internet Safety is difficult and yet critical. Here are the seven key steps to internet safety - steps to keep your computer safe on the internet.
-
How do I keep my computer safe from viruses? Computer viruses are a fact of modern connected life. Anti-virus software is required, and both it and the database it uses should be kept up-to-date.
Article C1887 - January 27, 2004
When I get e-mails the person sending it to me immediately gets an e-mail saying it's from me but they know it isn't as it contains many spelling and grammer errors. This also happens with e-mails that I get from commercial entities and then I get an e-mail that says that I can't reply to that address. I have virus protection but this is continuing. It seems it only does it once per sender as far as I can tell.
Posted by: JoAnn at December 23, 2009 2:34 PMI receive e-mails with myself as sender advertising Viagra and other medicine - to both of my e-mail addresses. I wonder if the thieves recieve e-mails sent to me by my friends?
25-Dec-2009
Posted by: Marianne at December 24, 2009 7:06 PM
Hi,
I have Little bit different problem. in your example virus on my PC tries to send email to the all email add in my address book.
but in my case it does not send it to all but to my self. with the subject line "Viagra at 10% discount " ect.
Please help me. I also did following.
Formated the PC and installed a new fresh OS and AV.
changed the password of my account.
but no use.
Thanks
20-Jan-2010
Posted by: Nitin Banosd at January 19, 2010 11:53 PM
A have a related question. I am the owner of a domain name: mydomain.com
My domain is hosted by Godaddy
I have 3 email accounts setup for my host, one of them is a catchall account.
Today, I started receiving bounced mail in my catchall account. Upon closer observation I found that the "From" email address was a bogus username@mydomain.com.
Is there a way to prevent someone from doing this? I don't want unauthorized users to be able to send messages using my @mydomain.com hostname.
Thanks for your help!
Posted by: Don V. at January 22, 2010 10:44 AMLike many Mac users, I've considered myself to be mostly immune from security problems. Recently, however, I *selected* a message that was directed to my Junk Mail folder (Note: I *did not* double-click on either the message or the attachment), and my hard drive immediately began grinding away. Mail.app hung (spinning beach ball) and I could not switch to any other applications, switch to the Finder, force quit Mail, open the Dock, or do anything other than watch the beach ball and wonder what all the disk activity was about.
After a minute or so, I switched off the DSL modem, lifted the keyboard (PowerBook), hit the interrupt switch and rebooted. Date and Time was only obvious thing affected, but I have no idea whether something else might be active or lurking somewhere.
My Junk Mail box is stuffed full of messages with small attachments and cryptic headers like:
"it's attendee may embryonic"
"dominant of trouble said Coakley describing the clifton",
" " (empty).
Once in a while a legitimate message gets directed there, but I am now nervous about even *selecting* any message that I'm not 100% sure about.
What's up with Mail and attachments?
Thanks for your great site!
Posted by: Marry at February 1, 2010 9:20 PM