Sidebar Sidebar
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

Getting spam iCloud emails apparently from myself

jennyp

jennyp

macrumors 6502a
Original poster
Oct 27, 2007
653
345
I'm getting iCloud mail apparently from myself.

One message has a "from" field with a different name to mine, but with one of my iCloud email addresses next to it. If I look at "all headers" I see the return path is noreply@blah-blah.apple.site.tk. The content is obviously spam - something about "your new singles" and a link to click (which I won't, obviously). Apple Mail flagged it as junk - but, do I want it flagged as junk - what if I send an email to myself using that address?

I had another email with virtually the same problem - a "from" field with a different name to mine, but with one of my iCloud email addresses next to it. This time Apple Mail has not flagged it as junk, and what's more, it was using an iCloud email address that I've never sent out anywhere - not even once. Again, if I look at "all headers" I see the return path is noreply@blah-blah.apple.site.tk. The message body/content was similar spam stuff to the first.

I guess my questions are, firstly, how in the latter instance did the spammers get an iCloud email address that I've never used, and secondly, if I flag such messages as junk, then will messages to myself using such addresses be flagged as junk also?
 
My iCloud password is already 32 characters long (!), and complex, but should I change it anyway? If so why? What might be going on here?
 
jennyp said:
My iCloud password is already 32 characters long (!), and complex, but should I change it anyway? If so why? What might be going on here?
Click to expand...

If you suspect your account could've been hacked, it's always wise to change the password. It's a good idea to change passwords on accounts on a regular basis, anyway, for improved security.
 
jennyp said:
My iCloud password is already 32 characters long (!), and complex, but should I change it anyway? If so why? What might be going on here?
Click to expand...

It is extremely unlikely anybody has hacked your account. The spammers are just spoofing the emails they send to make it look like they are coming from you, when they are not.
 
I knew about spoofing but I guess I was worried because an address was being used that I'd never used. Anyhow, thanks for the heads up - I've changed my iCloud password anyway :)
 
jennyp said:
I knew about spoofing but I guess I was worried because an address was being used that I'd never used. Anyhow, thanks for the heads up - I've changed my iCloud password anyway :)
Click to expand...

That has been going on lately with iCloud emails. I have one alias I have never ever used other than to send one test to myself, and I have gotten a couple of these spam messages to that address. I suspect spammers are just mixing up every combo. available and sending them to the icloud.com domain and the ones that don't bounce they know are good email addresses.

There have been a couple threads on here with others seeing this also.
 
I got an email today as well. When I checked my sent folder it wasn't there though. Hopefully Apple can get rid of them somehow.
 
jennyp said:
I'm getting iCloud mail apparently from myself.

One message has a "from" field with a different name to mine, but with one of my iCloud email addresses next to it. If I look at "all headers" I see the return path is noreply@blah-blah.apple.site.tk.
...
Click to expand...
The Return Path is one thing to look at. The other thing is the set of "Received:" headers. The "From:" could be set to anything and spammers frequently set it to your address so it has a better chance of getting through spam filter.
 
You must log in or register to reply here.
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.
Top Bottom
Back