stux⚡️Dec 30, 2022

⚠️ WARNING! ⚠️

I just received this email in a catch-all that was addressed to a user. Mastodon does NOT send such mails and this leads to a malicious login page!

Please make sure you are on the correct instance URL before logging in!

Also make sure the emails are send from the instance you are on! Often this email can be found on the /about page

#Mastodon

Show threadFezDec 30, 2022
@stux What’s the “real” email address behind the spoof? It can be reported so it sends this stuff directly to junk for people.
Show thread[Strange Yaseenist] pjals (medieval phase) Dec 30, 2022
@Fez @stux wdym reported? email has no reporting…
Show threadEquinox DeschanelDec 30, 2022
@pjals @Fez @stux Check the from, and forward to abuse@ -- this is still a thing. and gets spammers suspended. It's not a YOU WILL NEVER HAVE AN ACCOUNT AGAIN like it was back when, but it slows them down.
Show thread[Strange Yaseenist] pjals (medieval phase) 
@equinox_deschanel @Fez @stux what if the email hosting has no abuse@? or the spammer self-hosts a .com?
Dec 31, 2022 at 12:47pmWeb
Show threadEquinox DeschanelDec 31, 2022
@pjals @Fez @stux Then you’re out of luck, but forwarding to abuse@ is better than nothing.
Show threadFezDec 31, 2022
@pjals If you self host your email, it’s going to be sent to spam on 99% of email providers. That’s why you set up an email with a reputable provider then use your custom domain through them.


@stux @equinox_deschanel