8
b2plane
1y

I received this random email. Can someone explain me from dev side how does someone send this scam if the email was sent from xxx@google.com?

Comments
  • 6
    spoofing, check the dot menu for the raw header data
  • 1
  • 5
    email is shit. you can send anything from anyone.
  • 0
    Do you have a website with a form?
  • 9
    SendFrom("email@gmail.com")
    SendTo("email@server.com")

    There's litterally nothing stopping you doing this, but spam filters usually pick up on the fact the email from did not originate from the server it said it came from.
  • 1
    This is not the case here thou, I suspect
  • 5
    Maybe they just entered your email into a form?
  • 8
    @ScriptCoded exactly.

    Here is what they did:
    1. Write a google form that sends emails to subscribers
    2. Prepare the malicious email template to be sent upon subscription
    3. Write a script that goes over an email list (OPs included) and fills in the form.
    4. ???
    5. Profit
    6. Your soul has been sold
  • 0
    I received scam mail sent from PayPal, even outlook recognized it as "safe" but they wanted me to pay for something.

    Funny thing, the email account I received it on, is not even registered on PayPal.
  • 2
    @bioDan best explanation. You can't actually sent emails "from" google.com. there are authentication policies in place such as APF, DMARC (especially), and DKIM that prevent this. Otherwise, it would be ridiculously common.

    Swindlers need to be more creative, like you describe.
  • 1
    Email, SMTP you name it is one of the oldest protocols still used today.
  • 5
    i just got a flashback to when i was 13 and telneted to some smtp server and sent a mail to my dad "from" the us president XD

    so... yeah, welcome to how email works.
Add Comment