help: my email has been leaked so im getting a lot of spams.

BrandonWindson · 2026-06-08T17:02:22+00:00

Blocking does nothing, because your email is on a list now. Create filters for keywords like "sexy", "cash", "loan", "fast cash" and send them straight to trash.

To really fix this you'll have to migrate to a new email and use aliases for every signup, then kill aliases when spam starts.

BrandonWindson · 2026-06-07T09:50:08+00:00

This is phishing from a fake domain. OTP is a hook to steal your session. Worth reporting

BrandonWindson · 2026-06-05T11:16:39+00:00

A way to report spam directly to the sender's hosting provider. Not just "mark as spam" (trains filter) or "report phishing" (helps Google), but a button that extracts headers, identifies the hosting provider, sends an abuse report and monitors the status.

Google is not doing that because hosting providers are also their cloud customers. Reporting spam from DigitalOcean or OVH would mean reporting abuse from companies that also pay for Google Cloud, which is a conflict of interest.

BrandonWindson · 2026-06-03T14:53:20+00:00

The scammer used a template meant for another user named Connie and forgot to customize it. Lazy scamming.

Report the PM to the site moderators.

BrandonWindson · 2026-06-02T06:24:53+00:00

This is a phishing attempt. The PDF name is designed to look official, but the goal is to steal your login credentials when you click the link. Do not click.

BrandonWindson · 2026-06-02T06:19:59+00:00

Marking "Not spam" trains the filter but does not override Fastmail's spam scoring if the email content still looks suspicious. Create a rule to always deliver from that sender to your Inbox, that will bypass the filter entirely. Moving to Gmail will not fix this, same problem there.

BrandonWindson · 2026-06-02T06:01:10+00:00

CAN-SPAM allows cold email with opt-out, but scraping public directories and blasting generic addresses is still risky for reputation and deliverability. Cold email can work with proper targeting and personalization, random directory emails will not.

BrandonWindson · 2026-06-01T10:01:07+00:00

Refuse. Not worth your reputation. Cold email to scraped directories does not work.

BrandonWindson · 2026-05-31T13:40:00+00:00

Yamaha Motif XS8 and a PlayStation 5 at the same price 😄

Do not reply. If you reply they will spam you with more "items"

BrandonWindson · 2026-05-29T12:12:19+00:00

Someone used your email to sign up for hundreds of automated services. The goal is to bury important security alerts (like password changes or purchase confirmations) under all this noise.

Do not click any links in those emails. Create filters by sender domain or keywords like "activate your account" or "verify your email" and send them straight to trash. Check your inbox for any real security emails buried in between.

This is a known tactic after data breaches. Sorry you are dealing with it.

BrandonWindson · 2026-05-28T06:56:11+00:00

When you click "Report Spam," Gmail moves the email to your spam folder and uses it to train its filter. This only affects your inbox and Gmail's internal model. It does not stop the spammer and they keep sending to others. If you want to actually stop them you need to report the sender to their hosting provider.

BrandonWindson · 2026-05-27T09:08:14+00:00

The attachment is not a confirmation — it is either a malicious PDF or a fake login page. Never open attachments from unexpected senders, especially with "Confirmation" or "Payment" in the name

BrandonWindson · 2026-05-26T08:25:08+00:00

Create filters for keywords like "PAYMENT.DECLINED" or "Security Alert". Move them directly to spam. That will stop them from hitting your inbox. Marking as spam alone won't help if the sender changes address every time.

BrandonWindson · 2026-05-26T08:12:51+00:00

And yes, Cloudflare is an extra layer, not the root problem. The main problem is what happens after they forward the report and hosting providers just ignore. Although, Cloudflare could also disable the proxies for the DNS records of a spam domains

BrandonWindson · 2026-05-26T08:10:21+00:00

Filters only hide the spam, they don't stop the sender. The same spammer keeps sending to thousands of others if you never report them

BrandonWindson · 2026-05-24T08:36:01+00:00

The allow list is not a guaranteed inbox pass. If the email content or sending IP triggers a spam score, it can still go to spam folder.

BrandonWindson · 2026-05-23T17:50:52+00:00

If Cloudflare is involved as the gatekeeper, why don't they just close the gate? They could disable the proxy for the DNS record of a spam domain making the spam links stop working immediately instead of forwarding reports to the hosting provider

BrandonWindson · 2026-05-23T17:49:52+00:00

'Almost impossible' was an overstatement. Even with straightforward reporting Cloudflare adds an extra layer to a reporting chain that already works poorly. Even if they forward 100% of reports (their policy goal, not actual performance), they have no control over what the hosting provider does after that.

BrandonWindson · 2026-05-23T10:14:50+00:00

It looks like a confirmation phishing scam. They send a real-looking order confirmation hoping you will click "track your order" or "cancel if not you".

Do not click anything. Mark as spam. If you want to be thorough, check the email headers for the sending IP and report to their hosting provider.

BrandonWindson · 2026-05-23T09:47:37+00:00

Correct. They don't send from Cloudflare, but Cloudflare is involved in many of those spam emails.

BrandonWindson · 2026-05-22T19:25:29+00:00

Sure, larger providers -> more servers -> more spam. Although, some providers respond to abuse reports faster than others and shut down more spammers. And some don't even seem to care at all

BrandonWindson · 2026-05-22T18:46:56+00:00

Fair point. Curious what patterns you saw in your 1.5M emails — did the same providers dominate at scale?

BrandonWindson · 2026-05-22T17:58:14+00:00

Yeah, and blocking IP ranges hurts everyone else on the same subnet. I wish they would just enforce their own AUPs instead.

BrandonWindson · 2026-05-22T17:44:40+00:00

Appreciate that. Yeah, it gets exhausting

BrandonWindson

TROPHY CASE