• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to footer

OrganicWeb

Mailchimp Services for Medium & Large Organizations

  • Home
  • Services
    • Mailchimp Corporate/Team Training
    • Mailchimp Consulting
    • Mailchimp Live Public Classes
    • Mailchimp Recommendations Report
  • Free Tools
    • Mailchimp Tutorials on YouTube
    • Map maker for email
    • Is Mailchimp down?
    • Marketing facts and stats.
  • Content
    • Blog
    • Videos
  • Contact & About
    • Contact
    • About
You are here: Home / Marketing / How I’m stopping my domain being used by spammers

How I’m stopping my domain being used by spammers

Last week I wrote about how my domain is being used for spoofing. I also mentioned how the only way to try to protect your domain reputation from spoofing is to add a DMARC DNS record to your domain. Unfortunately anyone can send spam and malware messages and add your email address as the sender; there is nothing to stop anyone from misrepresenting who they are.

There are spam laws in place (such as the Australian Spam Act 2003) however spammers are very adept at making it extremely difficult for the authorities to prosecute the spammers. It is very important that domain owners make it as difficult as possible for spoofers (such as by adding and monitoring DMARC records).

Can you stop your domain being used for email spoofing?

I have had alot of contact from people enquiring whether my actions of adding a DMARC DNS record has helped. Unfortunately it really isn’t possible to answer whether my adding a DMARC record has been a success. What I have done in the past week is change the DMARC policy from quarantine to reject. The effect of making this change is that receiving servers should then eliminate the unaligned messages rather than place them in the recipients spam or junk folder. I did this because I had contact from quite a few people (particularly Bigpond customers) that checked their junk message folders and then contacted me asking that I don’t send spam email to them (most of the email messages were advertising Bitcoin services).

[DMARC] gives the legitimate owner of an Internet domain a way to request that illegitimate messages – spoofed spam, phishing – be put directly in the spam folder or rejected outright. DMARC.org

When the spoofing started, the originating servers were mostly GMX servers with the following IP addresses; 82.165.159.130, 82.165.159.131, 74.208.4.200 and 74.208.4.201. In the past week over 102,000 messages have been reported via DMARC as being sent by my domain with a minute fraction actually being sent by me or the services I use (e.g. Mailchimp). The services I use align with DMARC (as I’ve added the necessary SPF and DKIM records to my domain DNS) and don’t appear to be rejected (which is as expected per the DMARC policy I’ve set).

The number of email messages being sent as spoofing my domain has grown considerably since last week but I’m hoping that receiving mail servers are adhering to my request that messages that don’t align with SPF or DMARC are rejected.

Which domains are used for spoofing

Below are some of the domains and IP addresses that, over the past week, have sent several hundred messages or more where I haven’t sent the message (i.e. the below domains are being used for spoofing):
guidedviews.com
5.9.73.252
5.9.73.234
5.9.73.253
5.9.73.254
Wiseappearance.net
103.94.27.29
103.94.27.102
103.94.27.24
103.94.27.25
103.94.27.30
gmx.com
74.208.4.200
74.208.4.201
82.165.159.131
82.165.159.130
specialmenus.net
103.73.191.40
103.73.191.72
103.73.191.92
103.73.191.48
103.73.191.42
artsandnature.net
103.73.191.107
103.73.191.113
103.73.191.126
103.73.191.118
103.73.191.150
takeconsistent.com
103.73.191.170
103.73.191.177
103.73.191.194
103.73.191.19
103.73.191.160
kidfact5.com
103.82.235.13
103.82.235.15
103.82.235.12
103.82.235.8
103.82.235.14
traditionalflavor.net
103.73.191.230
103.73.191.32
103.73.191.254
103.73.191.212
103.73.191.219
programprix.com
103.82.235.211
103.82.235.204
103.82.235.202

Found this useful? Please share:

Related

  • Fix spam emails being sent from your domain
  • How being marked a spammer destroys your domain!
  • Simple Steps to Authenticate your Mailchimp Domain

Filed Under: Marketing

Watch Gary in action

Gary frequently adds Mailchimp instructional videos to his YouTube channel. Subscribe to keep updated.

→  Subscribe   ←

How to create a lead-capture form with file download.

How to target your most engaged Mailchimp contacts.

Reader Interactions

Comments

  1. Andrey says

    November 7, 2018 at 8:52 am

    Hi Gary,

    Any news on your fight against spoofers? I was getting invested in the tale and wanted to hear how things turned out.

    Andrey

    Reply
    • Gary says

      November 7, 2018 at 9:37 am

      Hi Andrey,
      The DMARC policy has worked extremely well. Whilst I continue to have my email address used by spoofers I monitor using Postmark and the numbers are very low.
      I advise all my clients to use DMARC!

      Reply

Leave a Reply Cancel reply

Primary Sidebar

Free Mailchimp Tutorial

Learn from a Mailchimp Pro Partner

Signup to receive info about Gary's Mailchimp beginner and advanced classes.

Sign up

Gary on Australian National Radio

Changes are coming to the Australian Spam Act

Read Gary's article in SmartCompany

Meet Gary, Mailchimp Expert

Gary is a Mailchimp Expert and Partner. He delivers Mailchimp training and consulting services in Australia, New Zealand and Singapore. Gary presents at Mailchimp events and hosts the first, and only, Australian Mailchimp sponsored event. He is M.B.A. qualified from Henley Business School, U.K.

Contact Gary for your Mailchimp needs

Footer

Customer ratings

Mailchimp pro partners

Contact

Contact Gary for all your Mailchimp training, consulting and integration needs.

Contact Gary.

Copyright © 2021 · Sitemap · ABN: 40800872179 · Privacy Policy · Terms of Service