Today I noticed an unusual amount of bounced emails. Initially I thought they were just spam mails so I just marked as spam and deleted them.
But more and more emails started to appear in my inbox. Some were bounced, some quota full, some vacation reply, some verification. Very strange.
So I took a look at them and found that all the mails were for one of my domains - freebizware.com.
It struck me that spammers are hijacking my domain to fake the From: address! Here are some examples,
They were even generating random usernames and names.
I considering implementing SPF in my mail server. But I want to see if there are other ways to stop this from happening.
Do you have a similar experience? How do you deal with this?
I have had this multiple times, and when researching I found this is called a ‘joe job’. Not sure where that came from, but yes, I’ve been a victim a few times.
When this happened (quite a while ago already) I did not know of any true countermeasures, so I just sat them out, and filtered the error mails to a seperate folder. SPF is very cool, but until the moment where every MTA works with SPF, it will not prevent the sending of e-mail from fake e-mailaddresses. Using SPF of course will help in the big picture.
Yes, I also came across a few comments on SPF consider harmful