Spam: Unsolicited Emails
What is Spam?
Spam is the unwelcome junk messages that pile into your in-box daily.
Spam is unwanted or unsolicited bulk email, postings, contact requests, SMS (text messages), instant messages, or similar electronic communications.
Simply put, spam is electronic junk mail.
More precisely, spam is the spreading of a single message to a large number of email addresses, posting on an inappropriate newsgroup, or cross-posting a message to (typically) more than three newsgroups.
Other terms for spam are Unsolicited Commercial Email (UCE) and bulk email.
Spam is Email Without Consent
Spam is an issue about consent, not content. Whether the UBE message is an advert, a scam, porn, a begging letter or an offer of a free lunch, the content is irrelevant — if the message was sent unsolicited and in bulk then the message is spam.
In most cases, there is also an unethical nature to the emails, usually involving some sort of scam.
I suggest you never do business with a company that contacts you in an inappropriate manner. What makes you think they'll be there for you when you need support or if the product they sell is defective?
Spam Costs You
The next time someone suggests that spam is no big deal, remember this statistic:
In 2011, roughly 82 percent of all email traffic was spam. It is estimated that scam and phishing messages make up 19 percent of spam, meaning it is essential to be able to spot and avoid email scams.
— Check Point blog
The cost of spam is borne by the recipient, not the spammer, both in terms of the financial cost but also in the amount of time you waste dealing with unwanted emails.
It costs much more to advertise in a newspaper than it does to purchase it. Some newspapers are free to the reader, completely paid for by the advertiser.
The opposite is true with spam:
It is extremely cheap for the spammer to send millions of messages out. If even one person responds to this junkmail, the spammer will recoup his costs.
What happens if you buy something advertised via spam? This graphic shows the flow of Internet traffic and money following a purchase of Viagra from a spam email.
— Technology Review
Dealing with Spam
When it comes to spam, individuals and businesses need to know how to protect themselves. That means recognizing a legitimate email versus spam.
Learn to Recognize Spam
One thing to watch for is emails that come from a company but come from Gmail, Hotmail or similar free email addresses. Corporations purchase and use their own domains for marketing emails.
Never "opt-out" of something you didn't opt-in to.
Responding to spam will only expose you to the thousands of spammers that do not reveal their identity or will simply pass your removal request onto their “sales” department — resulting in even more spam.
Your Devices Need Protection Too
With the exploding use of small devices like cell phones and tablets (both in addition to and in replacement of computers), spam is an important issue there as well.
Is That Business Ethical?
If you're dealing with a business, you need to ensure that business is ethical.
Ethical e-commerce allows a business or an organization to get their message out to those that are interested without endangering the organization's reputation.
Anyone offering to "target market" for you is offering to send spam on your behalf.
Getting Help Dealing with Spam
These sites can help you deal with spam:
- Canada's Anti-Spam Legislation site has information on how to recognize spam and protect yourself. Report spam.
- SpamCop determines the origin of unwanted email and reports it to the relevant ISPs.
- Network Abuse Clearinghouse has resources for users, system managers and developers.
- The Coalition Against Unsolicited Commercial Email (CAUSE) proposes an “opt-in” system where only those requesting mail receive it.
- The Netcheck Commerce Bureau promotes ethical business practices on the Internet.
- How to get less spam in your email — FTC.
Finding the Headers
During the process of getting help dealing with spam (or other email issues) you'll often be asked for a copy of the original email with the full headers.
The headers include tracking information that tells where the email originated and include the various servers involved in delivering the message.
If someone requests “the headers” they are looking for the tracking information contained within the email, but hidden by most email programs until you request that information (show headers, view source, etc.).
Email headers include information similar to the following:
From: <[email protected]>
Return-path: <[email protected]>
To: <[email protected]>
Wed, 08 Jun 2022 11:03:04 -0700
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:91.0) Gecko/20100101 Thunderbird/91.10.0
Information and layout varies between hosting services and email programs.
Usually folks only see the “short” headers:
To:, CC: & BCC:
To: and CC: are often included in the short headers, but BCC: addresses are only visible to the sender (and may appear as a To: address for the recipient).
Be sure you understand how to use To:, CC: & BCC: correctly.
Emails coming from a listserv (a subscription service) often include a list-info entry in the short headers.
Clicking on the list-info reveals the listserv information including the list owner and how to subscribe or unsubscribe.
Locating the “Full Headers”
Full headers refers to the complete information about an email. This varies by email program and mail provider, but usually including a message ID, user-agent (the software generating the email), tracking information, delivery date and more.
- [email protected] gives details on viewing the headers for a number of email programs.
Ever Wonder Why Spam is Allowed to Continue?
Have you ever wondered how spam can continue to exist? How can something this disruptive be allowed to continue. Can't governments or companies stop it?
There are three aspects to this:
- Spam is profitable.
- Legislators don't understand the problem.
- Corporate interests often are at odds with effectively dealing with spam.
The Profit Motive
Perhaps you've wondered, like I have, how spammers can process stolen and scammed credit card information? This would seem to be relatively easy given the numbers quoted in a recent Information Week article:
95% of spam-advertised products are monetized using merchant services from just a handful of banks, suggesting payment handling is the weak link in the global spam value chain.
All told, they saw 13 banks handling 95% of the 76 orders for which they received transaction information. (Only one U.S. bank was seen settling spam transactions: Wells Fargo.)
But just three banks handled the majority of transactions: Azerigazbank in Azerbaijan, DnB NOR in Latvia (although the bank is headquartered in Norway), and St. Kitts-Nevis-Anguilla National Bank in the Caribbean.
The article quotes one potential reason:
We have to remember that spam is actually very profitable for the banks and credit card companies that move the money. That might affect how likely they are to actually do something about this.
— Mikko Hypponen, chief research officer at F-Secure
See the related article, Anatomy of a Spam Viagra Purchase.