alt Hacker NewsA good reminder that signup is a surprisingly rich target.
>Every row has the same name: " Dene Hemen! 5K Lira Bonusunu Yakala" — Turkish for "Try it now! Grab the 5,000 Lira bonus." Casino spam.
>Each registration fired a verification email. 55K signups = 55K attempted sends to fake addresses — the kind of bounce storm that gets a sending domain blacklisted.
I'd be surprised if the email addresses were entirely fake - it doesn't make sense to advertise to just the website developer. It seems more likely that this spammer is targeting real email addresses from some dump (QQ is especially prone to this, since you can target random QQ ID numbers and get a lot higher of a hit rate).
Backscatter scam is huge nowadays. I get so many "ticket opened" emails from various zendesk instances, where the contents of the ticket is cheap dick pills and crypto scams. I don't think zendesk does any validation on the from-field on incoming support requests.