Tracking Down Scam email Details using Source of email, from Outlook

  • Thread starter Thread starter WWGD
  • Start date Start date
  • Tags Tags
    Email Tracking
Click For Summary

Discussion Overview

The discussion revolves around tracking down the source of spam emails using the information provided by Outlook, including the email's source details and Message-ID. Participants explore the feasibility of identifying spammers and the challenges involved in such investigations.

Discussion Character

  • Exploratory
  • Debate/contested
  • Technical explanation

Main Points Raised

  • One participant suggests that tracking can be done using the email message ID and other source details, noting the unique nature of Message-ID.
  • Another participant argues that it may be futile to pursue the identification of spammers, citing a story of a woman who faced challenges in her investigation.
  • A different participant mentions receiving multiple similar spam emails, indicating a recurring issue.
  • Some participants emphasize the utility of spam folders and automatic filters as a means to manage spam emails.
  • One participant raises a concern about scammers spoofing email addresses, which could lead to complications.
  • Another participant points out that the Message-ID is not a required part of SMTP, suggesting it may not be reliable for identification purposes.

Areas of Agreement / Disagreement

Participants express differing views on the effectiveness of tracking down spammers. While some see potential in using email source details, others believe it may be a futile effort. The discussion remains unresolved regarding the reliability of Message-ID for identification.

Contextual Notes

There are limitations regarding the assumptions about the reliability of email headers and the challenges in obtaining information from email service providers.

WWGD
Science Advisor
Homework Helper
Messages
7,785
Reaction score
13,038
TL;DR
Trying to track down details from a scammer/spanner. I have the IP addresses of some of the servers in the path, including the source, destination
Hi,
Trying to track down a spammer, using the source that Outlook provides for all emails received. The message seems to have gone through several servers, and have failed several security/legitimacy tests, such as SPF. I have the IP addresses, server names of the source (77.178...) and destination addresses; including the domain owner, narrowing down the source to central Europe. Can this tracking be done by using the email message ID, which is a unique identifier , i.e., no two emails are assigned the same email ID. I guess contacting the complaints department of the domain owner?
Message-ID is alpha ( a through z)-numeric( decimal), with 38 spaces; I guess this provides ##36^{38} ## choices, though I guess length can be increased, enough for the I guess, several billion sent yearly.
 
Computer science news on Phys.org
I think it's a fool's errand. Some of these sites cater to scammers and will resist giving up the spammer's identification or email.

There was a story about a woman who was incensed by an explicit, offensive spam email she received. She complained to a news media outlet, and they decided to conduct an investigation, eventually locating the spammer.

However, the investigation had its challenges. The originating site, a seemingly innocent industrial server farm, initially denied involvement until conclusive proof was provided, at which point they released the spammer's ID information.

She met with the spammer and told him how mortified she was to receive this piece of spam. She asked, "What would you do if your daughter got this email?" He said he had a family of small kids and would stop doing it.

I remember seeing or reading this story but can't find any citation.
 
Reply
  • Like
Likes   Reactions: WWGD
Well, maybe. Bit I've received at least 5-6 similar ones since Last August alone.
 
That is why we have spam folders.

When I receive spam by regular mail, I just put it in the bin; I don't try to contact the sender. It is even easier with emails and automatic filters.
 
jack action said:
That is why we have spam folders.

When I receive spam by regular mail, I just put it in the bin; I don't try to contact the sender. It is even easier with emails and automatic filters.
Valid point, but these are scammers , threatening to blackmail me, and this is around the 7th such mail in a year. Edit: This time too, they're spoofing my email address, which can cause me trouble. And I get to do something different and practice my cybersecurity skills.
 
Last edited:
"Message ID" is not a required part of SMTP so anyone can put whatever they want there. It will be useless in identification.
 

Similar threads

Using Word for Equation Editing
  • · Replies 15 ·
Replies
15
Views
2K
What are the drawbacks of using non-anonymous cryptocurrencies like Bitcoin?
  • · Replies 12 ·
Replies
12
Views
2K
Did You Receive a Fake eBay Email? How to Protect Your Account Today
  • · Replies 12 ·
Replies
12
Views
7K
Praise My feedback, one month and half experience in PF so far
  • · Replies 1 ·
Replies
1
Views
3K
STOP: 0x0000008E (0xC000005, 0XBF04DF7B, 0xED924B18 0X000000000)
  • · Replies 23 ·
Replies
23
Views
6K
TabletPCs for Science and Science Teaching [blog entry from 2006]
  • · Replies 3 ·
Replies
3
Views
4K
Graduate BRS: PKI Cryptosystems for SA/Ms: A Tutorial
  • · Replies 13 ·
Replies
13
Views
4K
Undergrad Progress In Calculating The HLbL Contribution To Muon g-2
  • · Replies 0 ·
Replies
0
Views
3K
Requesting suggestions for languages, libraries, and architectures for parallel (and sometimes non parallel) numerical and scientific computations
  • · Replies 8 ·
Replies
8
Views
4K
  • Sticky
Physics Forums Global Guidelines
  • · Replies 2 ·
Replies
2
Views
504K