Also, the idea of a caller asking probing questions about underlying architecture, topology and network infrastructure is kinda social engineering, isn't it? The other thought that crosses my mind is that if Amazon claims NOT to send these emails and the front line reps are told to say they are not Amazon emails, then it kinda isn't a liability for them. unsubscribe or something else) that the phisher is just waiting for someone to click? I sure as hell ain't going to click unsubscribe.Īs the news cycle deteriorates, I am definitely noticing more of these malicious actors out there. IT forensics aside, could there just be a malicious link hiding (e.g. and hey, how did that _ work out?" Assuming these emails are NOT from amazon, then what is the mechanism that tells this unknown sender I have a Prime account and what I purchase? It seems disconcerting.
#Amazon starts photo print store news full
I really don't like these emails because they have my full name and apparent knowledge of "hey, you bought this. I do wonder how the front line customer service representatives can be so mis-informed. I just looked up gmail's spam filter policy (DMARC), and it requires one or the other be set. I was going to say SPF is an older standard and (I think) still more prevalent, but I spot checked a few recent mail messages and looks like most companies are using both now. Mudpuppy is absolutely correct that DKIM is a better check if it is available. Anyone can put anything as a sender string, but if it is from amazon, only amazon can have a valid signature. DKIM supports a signature for the sender record itself. They also transmitted the email to my ISP using TLS instead of plaintext, as noted in the Received header.įor the sake of folks reading the thread, SPF is a standard where the the gateway address used to send the mail (smtpgateway) is documented in a DNS record only the legitimate sender can own. I just checked the headers of a legitimate Amazon order email and they use DKIM signatures for both and, which are more secure since they involve a cryptographic hash.
#Amazon starts photo print store news manual
That does the same thing as the manual SPF check. That will show you all the mail headers, and gmail will automatically check the validity of the the gateway used to send the mail (smtp), the "SPF Check", will "say PASS/FAIL". If you use gmail, you can say "show original message". It has to explicitly list the SMTP address used for the mail for it to be valid. If you're checking the mail header details, then use something like to manually look up the SPF record associated with the. I bought something simple I needed but I can't help but think are they driving traffic and transactions on their own site? I know the spoofing techniques are becoming more sophisticated.Įssentially a lot of these emails are they ones that say, "Hey you bought this, you might like this." The IP Address came from the same Class B Network that sends order confirmations. I viewed the message header details and there was nothing amiss to my eye. Nothing I have seen so far screams "too good to be true" but I did try the aforementioned offer and they said they didn't send it. I got one that said buy something in this category and get a $10 off coupon towards your next purchase of $25 or more. The problem is that the sends promotions. Additionally, I have found the section under the user account details that shows the user what email messages have been sent to a user.
In essence, the reps have an application that shows what email messages have been sent to a user.
Has anyone ever gotten an email from either of the following email Amazon customer service reps tell me messages from these emails are NOT from Amazon.
0 kommentar(er)
