we get dozens of SPAM emails to our company

[DougP]

they come to everyone in the company even new poeple who have a brand new email address and have not even used it yet.
I think there is somethgn in exchange maybe or on the server causing this?
They all have the "TO" address the same to everyone that gets it "OURCOMPANYname" and they seem to be Viagra or stocks
Any ideas what this is?

DougP, MCP, A+

 

[smah]

Just checking my junk folder reveals exactly what you're describing - the most recent 6 contain subject PHbARuMA and were sent to accounts that have never existed @ mydomain. Without even scrolling up, I'm sure there are many more. I think that it's just random usernames added to your domain. They've probably have been sending with these names for some time, only now there's actually a user with that name to receive them.

 

[zarkon4]

Check into buying a barracuda spam filter network appliance.
We have, and it has dramatically reduced spam by blocking it and not even allowing it in.

 

[2ffat]

For kicks, I set up a spam collection box. I discovered that spammers are sending these emails to anything with our domain name. Someone has put together a program with proper names and spammers are using that to spam domains. Thus they start with abe@yourdomain.com and end with zimmerman@youdomain.com. Worse yet, they will spoof the return address to be from your domain, too.

Yesterday, someone tried to send everyone a virus that perported to be from a nonexistant admin email at our domain.

Your best bet is to do as advised above and get a spam filter in place.

James P. Cottingham
-----------------------------------------
[sup]I'm number 1,229!
I'm number 1,229![/sup]

 

[paintballer]

You may also look at Fortinet for what they call "UTM" or Unified Threat Management, which means that the devices have Anit-Virus, Anti-spam, WebContent filtering, Intrusion Protection / Detection, SSL VPN, as well as the normal firewall capabilities. This is done all in one device, and you could get the seperate "FortiMail" device if you have a large email community that you need to protect.
They're even coming out with a switch that has this on EVERY port!
I don't know of any other company that does all this in one device.

http://www.fortinet.com

And no, I'm not a shill.

 

[DougP]

OK but I get SPAM email that are to George Schnoggle and know one here has that email
In fact none of them are to me but they show up in my JUNK mail or inbox anyway. That why I suspect there is a hijack on our Exchange some how using us a realy maybe and also sending to us the junk.


DougP, MCP, A+

 

[sleipnir214]

It is not a hijack of your mail server. It is spammers trying to harvest addresses, as 2ffat has explained, by sending emails to made up addresses. You have to remember that anyone can send an email as anybody to anybody.

I see exactly the same thing, running postfix on Linux, which is about as different an email platform from Exchange as is possible.



Want the best answers? Ask the best questions! TANSTAAFL!