Skip to main content

Posts

Showing posts from December, 2007

Spammers Penetrate Gmail Spam Filters

I've discussed this in the past, but there are serious security issues with GMail, namely that the email forwarding ability allows spammers to redirect directly into a users inbox. The trick pretty much works best for Gmail accounts, whereby Google puts less scrutiny on emails sent within it's system compared to those sent by third-party email services like hotmail/live, yahoo etc.

Here's how it works:Using Gmail to Bypass Spam FiltersSpammer creates a new gmail account with a random, but credible looking name.
Spammer whitelists their spam address in the account - so that their messages will always go to the inbox.
The spammer then uses GMail's email forwarding setting to forward all emails to a target's address. This means all messages sent to the spam email will be forwarded off to the victim's address.

Spammer does this for all their spam targets (mass-creates 1 gmail account for each victim).
Spammer than sends their spam emails out to all the gmail addresses …