A couple of months in the past it was delivered to our consideration that spam emails containing inappropriate content material are being despatched out and that it seems they’re coming from a Buffer-owned area (buffermail.com). The emails should not coming from Buffer or from buffermail.
On this put up, we’ll do our greatest to clarify what has been taking place thus far for anybody who has been impacted.
To start out, many people are receiving emails with suspicious headlines like “Hey, electronic mail id” or “package deal ready.” These emails seem to be coming from a Buffer area. In actuality, we are able to see that they’re coming from one other area and try to masks their content material as coming from Buffer — that is referred to as electronic mail spoofing.
We needed to be completely sure that this sort of electronic mail spoofing was certainly the reason for this situation. To verify this, we analyzed the unique mail headers to confirm the place the emails have been coming from. We discovered the headers clearly exhibiting the verification checks had failed as anticipated within the case of spoofed mail. We additionally discovered that the servers sending the emails didn’t belong to us or any providers that now we have ever used. So in the long run, we have been capable of affirm that this situation was not a results of a misconfiguration on our finish.
Usually, spam filters from electronic mail suppliers decide up on this conduct and don’t put that content material in the primary inbox. Nonetheless, there may be presently a problem with Microsoft Outlook and Hotmail the place this sort of content material isn’t being despatched to spam folders.
As of January 2023, Microsoft has acknowledged that they’re conscious of this situation and are working to repair it.
We want there was extra we might do on this state of affairs because the attackers are impersonating a Buffer area — we’ve exhausted our checklist of choices, although, and the remaining work lies with the e-mail suppliers to higher filter these spam messages.