On 6/23/21 15:49, Simon Arlott via mailop wrote:
I received a scam email from mail-ma1ind01on060c.outbound.protection.outlook.com (2a01:111:f400:fea4::60c) so I reported it to the RIR contact, ab...@microsoft.com and got the following reply implying that they intend to ignore the problem entirely and expect me to feed it as input to their spam analysis system for the benefit of their own customers.
This is typical. One would think that with the header information they could automatically route abuse complaints internally. They wrote the cryptic headers and know what they mean. They can and obviously did parse your complaint to the point that they know it came from an Office 365 tenant. One would hope that they actually have an abuse desk that deals with Office 365 tenants and that said abuse desk accepts input at the "j...@office365.microsoft.com" address. They presumably have enough technical ability to route such complaints received at their RIR abuse contact directly to said abuse desk.
There are at least three Microsoft spam reporting addresses, and I think at one time I saw possibly a fourth one for "Azure".
At this point I just send spam reports to all of them and let Microsoft sort them out.
report_s...@hotmail.com ab...@microsoft.com j...@office365.microsoft.com (possibly others?)
If they have identified that it comes from their servers then why can they not complete the process as an abuse report?
They can. They choose not to make the effort.
Is it actually possible to report email abuse to Microsoft?
You can report it. You might be asked to jump through a flaming hoop and report it again in a different manner. Whether your report actually results in action against the spammer is unknown.
-- Jay Hennigan - j...@west.net Network Engineering - CCIE #7880 503 897-8550 - WB6RDV _______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
