Hi Team In the last days, we got a significant number of spamtrap hits and customer spam reports about this image link being spamvertized:
https://s-install.avcdn.net/ipm/preview/icons/icon-envelope-tick-green-avg-v1.png When looking at the evidences, those are in one part, clearly spambot generated emails, even ones trying dictionary attacks on our 'open relay' honeypot. On the other hand, we are seeing customers reporting advertisement emails, sent via ESP, which to me don't look like false positives but companies which are known to harvest email addresses from websites and then sending emails without the required agreement from the recipient to receive those emails. So in both cases I am pretty sure, the sender does not use any products from avast.com. Unfortunately this causes issues for senders which use avast.com products as their 'add paid' free product seemingly adds exactly this URI in outgoing emails, which in turn causes those emails to score a high spam probability. Does anyone have a contact @ Avast to look into that issue? I'm not sure if the goal is a joe-job against the avast.com CDN, or if this is an attempt in the hope that any email containing that URI would be whitelisted from spamfilters. -- Mit freundlichen Grüssen -Benoît Panizzon- @ HomeOffice und normal erreichbar -- I m p r o W a r e A G - Leiter Commerce Kunden ______________________________________________________ Zurlindenstrasse 29 Tel +41 61 826 93 00 CH-4133 Pratteln Fax +41 61 826 93 01 Schweiz Web http://www.imp.ch ______________________________________________________ _______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop