Hi Gang Lately I came across various oddities with Amazone SES.
About a year ago, envelope sender @eu-west-1.amazonses.com was known to send exclusively spam and thus on the personal blocklist of many of our customers. Now it looks like some big legitimate companies, like the major food delivery service in Switzerland is using this domain for their order confirmations. Today, we got complaints that 2FA confirmations codes via email from one of the major Swiss newspapers get blocked as those contain a link to http://awstrack.me/ no https no path, just that link to the webserver which is not even reachable. I don't understand why AWS is putting a link to a nun functional website in their emails. The domain awstrack.me was on our blocklist because of hundreds of spamtrap hits and customer spamreports. I looked through those complaints, they are legitimate and concern mostly phishing emails sent via Amazon SES Services. It looks like awstrack.me was probably used as URL shortener/obfuscator/click tracker until the beginning of december 2024. It also looks like AWS is using the same IP addresses and envelope from to send email for big paying customers and what I assume are 'free' accounts used by spamer and phisher. Is there some useful way to distinguish spam from non spam sent via Amazon SES? -- Mit freundlichen Grüssen -Benoît Panizzon- @ HomeOffice und normal erreichbar -- I m p r o W a r e A G - Leiter Commerce Kunden ______________________________________________________ Zurlindenstrasse 29 Tel +41 61 826 93 00 CH-4133 Pratteln Fax +41 61 826 93 01 Schweiz Web http://www.imp.ch ______________________________________________________ _______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
