Helping people with computers... one answer at a time.
Email spoofing is rampant. Spammers often send email that looks like it came from you. And there's little that you can do about it.
Someone's sending from my email address! How do I stop them?!
•
Variations on a Theme
There are several variations on this issue, so before we begin, let me also mention some articles that might more closely match your situation:
If email is being sent to your contacts without you having done so and you find messages in your Sent Mail folder that you did not send, then your email account has probably been compromised. See Someone's sending email that looks like it's from me to my contacts, what can I do?
In particular, if your contacts are getting mail from you that claims that you're stranded in some foreign country and need money, your email account has almost certainly been compromised. You want Someone's stolen my email account and is scamming my contacts for money, what do I do?
If email that you do send is now automatically including an ad of some sort that reads as if you wrote it, then Why do messages I compose in Hotmail now start with an ad that looks like it's from me?
Finally, if people you don't know are getting email "From:" you, then there's probably nothing wrong at all. And you're reading the right article right here.
It's Not Your Fault
You're minding your own business and one day, you get email from someone who you've never heard of and they're asking you to stop sending them email. Or worse, they're angry. Or worse yet, they accuse you of sending them a virus! But you don't know them, you've never heard of them, and you know that you've never sent them email.
Welcome to the world of viruses where you can get the blame for someone else's infection. And there's worse news to come.
•
Before I get to that, there is always a small possibility that your email account has been compromised. The solution there is simple: change your password immediately. That should prevent someone who's using your account for malicious purposes from continuing, assuming that you've chosen a good password. (If you find that your account has indeed been compromised, you may want to change more than just your password.)
But these days, that's not the most common cause for the situation that I've described - viruses are. And what's worse - there's almost nothing that you can do.
The typical virus that does this infects someone's machine and then sends spam, lots of spam, forging the "From:" address for the email that it sends. What addresses does it use to forge the address? Any address that it can find and probably at random. That could be other email addresses that it's sending to, email addresses fed to it by a botnet, or perhaps even the addresses in the address book of the infected machine. The infected machine will send email to everyone that it can, looking as if it was sent by other people.
And you could be one of those "other people", even if you had nothing to do with any of this.
Peter, Paul, and Mary's Email
Let's use a concrete example: Peter's machine gets infected with a virus. In his address book are entries for his friends, Paul and Mary. Paul and Mary have never met, have never exchanged email, and do not know each other - they each just know Peter. The virus on Peter's machine will send email with the virus to Paul looking like it came from Mary. Paul may wonder who the heck this Mary person is and why she's sending him a virus, but she was never involved.
If you're in Mary's place, you can see that it would be frustrating to be accused of something that you had nothing to do with and have no control over.
For the record, your email address may end up in the address books of people who you don't know as well. Various email programs will automatically hold on to additional email addresses that were included on email that you received or possibly from email that was forwarded. Viruses have also been known to use other sources of email addresses or even forward them around as the virus spreads. What that means is that the simple "friend of a friend" example that I used with Peter, Paul, and Mary, while simple and certainly possible, is not the only way that your email could show up as a forged "From" line.
What's important here is simply this - one way or another, email viruses lie about who sent them.
There's Little You Can Do
If someone accuses you of sending a virus-laden email and you are positive that you did not do it, then you have very little recourse other than to try to educate them about how viruses work. Point them at this article if you like. But be clear - you're not necessarily infected nor is the person who received the mail claiming to be from you. It's some third party who is. (And identifying that third party is difficult - this is why virus writers use this technique.)
In other words, there's nothing that you can do.
And of course be sure that you're not going to get infected yourself: don't open attachments from people you don't know and make sure that you have an up-to-date virus checker and virus definitions file. My recommendations are here: What Security Software do you recommend?
Article C1887 - January 27, 2004
Leo A. Notenboom has been playing with computers since he
was required to take a programming class in 1976. An 18 year career as a programmer at Microsoft soon followed.
After "retiring" in 2001, Leo started Ask Leo! in 2003 as a place for answers
to common computer and technical questions. More about Leo.
My yahoo email account got hacked last week. I just deleted that email account and notified as many of my friends as possible to block all emails coming from that account. I didn't want to just change the password. I thought it was time for a clean start with a new email account. I learned it is wise to change my password regularly.
Posted by: Cindy at April 14, 2010 6:53 AMRespected Leo,
i do not want unidentified emails to my itimes account which i mention in your email address requirement suggest what should i do and how do i do this in this itimes account portal.
Thanks for your time and attention.
Posted by: nitin at April 23, 2010 1:09 AMwhenever I try to send a message in my hotmail and hit the new to compose an e-mail there is already one message by a chinese company wich will go with my message if I don't remove it. How can I get read this. Plse help.
24-Apr-2010
Posted by: Mahmoud at April 23, 2010 8:40 AM
someone promoting viagra and other drugs in my name and using all my contacts in all my email accounts!
Posted by: adma at April 28, 2010 5:45 AMthey have listed a website, can i contact the hosting company or the owner of that website?
how to stop this nightmare?
If email is being sent to your contacts without your having done so see Someone's sending email that looks like it's from me to my contacts, what can I do?
If email you send is now automatically including an ad that reads as if you wrote it see Why do messages I compose in Hotmail now start with an ad that looks like it's from me?
If people you don't know are getting email "From:" you, then the article above applies.
28-Apr-2010
Posted by: Leo at April 28, 2010 2:25 PM