How can I stop a relentless spammer who switches domains and sends via Google Workspace?

Summary

Combating a relentless spammer requires a comprehensive strategy involving several steps. Begin by reporting the spammer to Google. If possible, identify the ESP and file a complaint. Utilize Gmail's blocking and filtering features, including wildcards for domain blocking. For enhanced security, use temporary email addresses for new sign-ups and regularly review email privacy settings. Protect your domain by implementing DMARC records. Report phishing attempts to Google at abuse@google.com. Continuously update blocklists and consider advanced filtering techniques. Be cautious of suspicious emails and verify sender addresses.

Key findings

  • Reporting is Key: Reporting the spammer and phishing attempts to Google is crucial.
  • Filtering Effectiveness: Gmail's filtering capabilities, particularly with wildcards, are effective in blocking spam.
  • Privacy Matters: Reviewing and adjusting email privacy settings enhance security.
  • Domain Protection: DMARC records protect against domain spoofing.
  • Multi-faceted Approach: A combination of strategies, including filtering, reporting, and domain protection, is most effective.

Key considerations

  • Hosting Provider Limitations: Action from hosting providers like AWS may be limited.
  • Adaptability: Spammers constantly adapt, requiring ongoing vigilance and strategy adjustments.
  • Resource Intensity: Implementing advanced filtering and machine learning requires resources and expertise.
  • User Education: User education on identifying and reporting phishing attempts is crucial.

What email marketers say
12Marketer opinions

To combat relentless spammers who switch domains and send via Google Workspace, a multi-faceted approach is necessary. Reporting the spammer to Google, identifying the ESP for complaint, and utilizing Gmail's filtering capabilities (including wildcards) are essential. Furthermore, employ best practices such as using temporary email addresses, reviewing privacy settings, and unsubscribing from unwanted lists. For domain protection, implement DMARC records. Report phishing attempts to Google via abuse@google.com.

Key opinions

  • Report to Google: Reporting spammers to Google helps improve spam detection and filtering.
  • Identify ESP: Identifying the Email Service Provider (ESP) used by the spammer allows you to file a complaint.
  • Utilize Gmail Filters: Gmail's filtering system, including wildcard usage, can block emails from specific senders or domains.
  • Temporary Email: Using a temporary email address can shield your primary account from spam.
  • Review Privacy: Reviewing privacy settings and disabling features like read receipts reduces potential tracking.
  • DMARC Records: Implementing DMARC records protects your domain from spoofing.
  • Phishing Report: Reporting phishing attempts to abuse@google.com helps improve Google's spam filters.

Key considerations

  • Multi-layered Approach: A combination of strategies is more effective than relying on a single solution.
  • Constant Adaptation: Spammers constantly adapt, so strategies need to be continuously updated.
  • Domain Protection: If you own a domain, take steps to prevent spammers from spoofing it.
  • Privacy Awareness: Be aware of privacy settings in your email account and how they impact your security.
Marketer view

Email marketer from Email Marketing Tips Blog answers that unsubscribing from unwanted email lists can significantly reduce the amount of spam you receive. Use the unsubscribe link at the bottom of the email.

September 2023 - Email Marketing Tips Blog
Marketer view

Email marketer from Reddit explains to report the phishing attempt. Forward the email as an attachment to Google at `abuse@google.com`. This helps Google to learn and improve their spam filters.

January 2022 - Reddit

What the experts say
4Expert opinions

Combating persistent spammers requires a multi-layered approach. While reporting to hosting providers like AWS might be ineffective, blocking the spammer and reporting abuse to domain registrars like Namecheap is advised. Experts emphasize advanced filtering, continuous blocklist updates, and machine learning for pattern identification. Tracking and reporting spoofed or compromised accounts to abuse desks and Google Workspace are also crucial for prevention.

Key opinions

  • AWS Inaction: Reporting spam hosted on AWS might not lead to significant action.
  • Namecheap Abuse: Reporting abuse to domain registrars like Namecheap can be effective.
  • Multi-Layered Defense: Advanced filtering, updated blocklists, and machine learning enhance spam detection.
  • Report Spoofing: Tracking and reporting spoofed accounts helps improve overall spam prevention.

Key considerations

  • Persistence: The relentless nature of the spammer requires constant vigilance and adaptation.
  • Proactive Measures: Implementing advanced filtering and blocklists proactively is essential.
  • Reporting Importance: Consistently reporting spam and abuse helps improve spam detection systems.
Expert view

Expert from Email Geeks suggests blocking the spam and reporting abuse to namecheap.

March 2023 - Email Geeks
Expert view

Expert from Spam Resource explains that when dealing with spammers who constantly change domains, IP addresses, and content, a multi-layered approach is necessary. This includes using advanced filtering techniques, continuously updating blocklists, and employing machine learning to identify and block new patterns. Reporting the activity to Google Workspace is also crucial.

March 2023 - Spam Resource

What the documentation says
3Technical articles

Google Workspace Admin Help provides several methods to stop spammers. Users can directly block senders in Gmail. Admins can create email filters based on sender, recipient, subject, or keywords to manage emails automatically. Google Safety Center advises caution with suspicious emails, urging users to verify senders and report phishing attempts.

Key findings

  • Direct Blocking: Gmail users can directly block senders to prevent further emails.
  • Admin Filters: Workspace admins can create email filters to manage incoming emails using various rules.
  • Safety Precautions: Users should verify sender addresses and avoid clicking links or attachments from unknown senders.

Key considerations

  • User vs Admin Control: Direct blocking is a user-level action, while filters are admin-level and can provide broader control.
  • Phishing Awareness: Even with blocking and filtering, users should remain cautious about potential phishing attempts.
  • Continuous Monitoring: Filters and blocked lists need to be continuously updated to remain effective against persistent spammers.
Technical article

Documentation from Google Workspace Admin Help explains that you can block a sender in Gmail. Open the message from the sender, click the three dots in the top right corner, and select 'Block [Sender]'.

November 2022 - Google Workspace Admin Help
Technical article

Documentation from Google Workspace Admin Help explains how to create email filters to automatically manage incoming emails. Admins can set up rules based on sender, recipient, subject, or keywords to either delete, label, forward, or mark messages as spam.

December 2023 - Google Workspace Admin Help