Terry Zink's Cyber Security Blog

Discussing Internet security in (mostly) plain English

A couple of more chinks in Gmail's armour?

A couple of more chinks in Gmail's armour?

  • Comments 6

In the last few weeks, I've noticed that my Gmail account is getting more spam than it used to.  Granted, it's maybe 1 or 2 per week but that's still more than the zero that everybody says it is.

In the past couple of days, I've noticed some spam getting through from spammers using Google.  Here's some of the information:

Date: Sun, 29 Apr 2007 01:52:54 -0700
From: "Pipe Nigro" <a_spammer@gmail.com>
To: One of my email accounts
Subject: Investor.com This got to the hottest list
Received: from qb-out-0506.google.com (qb-out-0506.google.com [72.14.204.228])
Date: Sun, 29 Apr 2007 18:02:02 -0700
From: "Bowden Eberspacher" <another_spammer@gmail.com>
To: The same email account
Subject: Market.com Watch out for this one
Received: from ug-out-1314.google.com (ug-out-1314.google.com [66.249.92.170])

Both of these were stock spam, and both of these spam messages passed their respective SPF checks, meaning that they both did, indeed, come from Google's servers.  Looks like Google may not be as invincible as I once thought.

Perhaps that explains why my shares in the company have been flat for three months.

Leave a Comment
  • Please add 5 and 5 and type the answer here:
  • Post
  • Perhaps google automatically assumes messages from their own servers are not spam and that's why they're getting through as well? Seems like a fairly obvious exploit to me...

  • With Google's Abuse department being nonexistant and/ or unwilling to deal with complaints, I'm surprised that they haven't been a much abused target before this. (I'm getting them as well)

    Especially since emails sent through the GMail service do not report where the message originated from before reaching GMail's boxes when sent by a GMail user. (Or at least they didn't last time I checked.)

  • A couple of weeks ago I noted that some spammers were sending spam through Gmail. Well, I noticed it

  • Over the past week I've received 10+ spam messages originating (and signed) from Google servers. The latest from ug-out-1314.google.com

    I've dealt with Google's abuse department before and not had impressive results... and by results, I mean no response whatsoever.

    Google needs to get some control over this ASAP.

  • There is acceptance card credit guaranteed uk advance cash fast loan online payday

  • Pay payday loan cash advance loan advance cash loan loan payday

Page 1 of 1 (6 items)