A couple of months in the past it used to be delivered to our consideration that unsolicited mail emails containing irrelevant content material are being despatched out and that it sounds as if they’re coming from a Buffer-owned area (buffermail.com). The emails aren’t coming from Buffer or from buffermail.
On this submit, we’ll do our absolute best to give an explanation for what has been taking place thus far for any individual who has been impacted.
To start out, many people are receiving emails with suspicious headlines like “Hi, electronic mail identity” or “package deal ready.” The ones emails seem to be coming from a Buffer area. If truth be told, we will be able to see that they’re coming from every other area and are looking to masks their content material as coming from Buffer — this is known as electronic mail spoofing.
We needed to be completely positive that this sort of electronic mail spoofing used to be certainly the reason for this factor. To verify this, we analyzed the unique mail headers to ensure the place the emails had been coming from. We discovered the headers obviously appearing the verification exams had failed as anticipated on the subject of spoofed mail. We additionally discovered that the servers sending the emails didn’t belong to us or any products and services that we have got ever used. So in any case, we had been in a position to verify that this factor used to be no longer a results of a misconfiguration on our finish.
Generally, unsolicited mail filters from electronic mail suppliers select up in this conduct and don’t put that content material in the primary inbox. Alternatively, there may be these days a subject with Microsoft Outlook and Hotmail the place this sort of content material isn’t being despatched to unsolicited mail folders.
As of January 2023, Microsoft has said that they’re acutely aware of this factor and are operating to mend it.
We would like there used to be extra lets do on this state of affairs because the attackers are impersonating a Buffer area — we’ve exhausted our checklist of choices, although, and the rest paintings lies with the e-mail suppliers to higher clear out those unsolicited mail messages.