ID theft/hacking

Thank you, all of you, so much!

Maybe I was over-reacting, but this was the first time I’d ever discovered that someone had apparently sent emails in my name and from one of my email addresses. I know several colleagues have ahd that prblem, but they use a different email system.

And yes, I’ll set up a new account - but in fact, the one I use for funadvice doesn’t seem to have been affected.

Thanks again!

A lot of times the spam emails use what’s known as “dictionary spam” eg, combinging a list of names, numbers, etc to auto generate a list of millions (or billions) of email addresses…so, while they don’t have your email or know you who are, by doing the dictionary email spam method, they can guess at a lot of usable email addresses.

One thing I’d add is that there is noting in basic SMTP to prevent anyone from impersonating anyone else. With a little technical knowledge anyone can send emails claiming to be from anyone they wish. If you can get the full headers you can trace its path back to the originating server but there are tricks here to throw people off as well.

Someone doesn’t have to use your account to forge email.

I have one email address I”ve had for 15 years. Back then nobody worried about people harvesting email addresses (pre-SPAM) so we didn’t bother hiding them. I see lots of bounced spam apparently from me but the headers all indicate that they didn’t originate from any email server I use.

Digital signatures are the only way to be sure email comes from who it claims to be from.