Why it Looks Like Spam Emails are Coming From Buffermail

A few months in the past it was introduced to our attention that spam emails containing inappropriate information are being despatched out and that it appears they are coming from a Buffer-owned domain (buffermail.com). The emails are not coming from Buffer or from buffermail.

In this publish, we’ll do our ideal to make clear what has been happening so much for any one who has been impacted.

To begin, quite a few persons are receiving email messages with suspicious headlines like “Hello, e mail id” or “package waiting around.” People emails appear to be coming from a Buffer area. In reality, we can see that they are coming from another domain and are seeking to mask their content material as coming from Buffer — this is called email spoofing.

We desired to be definitely particular that this type of e mail spoofing was certainly the bring about of this situation. To confirm this, we analyzed the authentic mail headers to verify exactly where the e-mails ended up coming from. We observed the headers plainly showing the verification checks experienced unsuccessful as predicted in the scenario of spoofed mail. We also identified that the servers sending the e-mail did not belong to us or any solutions that we have ever made use of. So in the close, we have been able to affirm that this challenge was not a final result of a misconfiguration on our finish.

In most scenarios, spam filters from electronic mail companies decide up on this conduct and do not put that information in the most important inbox. Nonetheless, there is presently an problem with Microsoft Outlook and Hotmail wherever this form of content material is not being despatched to spam folders.  

As of January 2023, Microsoft has acknowledged that they are conscious of this problem and are doing work to repair it.

We desire there was additional we could do in this scenario due to the fact the attackers are impersonating a Buffer domain — we have fatigued our list of possibilities, while, and the remaining perform lies with the e-mail suppliers to superior filter these spam messages.