Recently I’ve been getting a lot of mail from the feedback loops I subscribe to indicating that someone has gotten a subscription confirmation message and they considered it spam.
After digging into my logs I noticed a few things …
- The subscription requests are being initiated from TOR exit nodes.
- The web requests that initiate the subscription have “mailbait.info” as their referrer.
This ‘mailbait.info’ service is supposed to allow you to fill your mailbox … why anyone would want to do this is beyond me … and it has absolutely ZERO protections against submitting someone else’s email address. As such, it just ends up generating spam. And a lot of the twits that are using this ‘service’ are hiding behind TOR nodes, which protects their IP address.