Password Security and Spamming

Over the weekend we saw a rash of compromised emails accounts that were in turn used to send out spam.

When we investigated these, we found almost all of them using extremely weak passwords and a large majority of those were using passwords that followed the syntax:

Please don’t use passwords like this.

You may think that it doesn’t really matter, but if you’ve ever used your email address any where – then that email address is known. And if you are using a password that follows this syntax or any other easy to guess password structure, it’s trivial for spammers to guess your password and then abuse your account to send out spam.

When your domain name is associated with sending out spam, it starts to build a bad reputation and can start to hurt the deliverability of your legitimate mail. We try to catch these spam events as best we can, but the best course of action is for end users to practice solid password security.

To check the strength of your passwords we recommend:

http://www.passwordmeter.com

We have previously posted about the importance of password security at:

The Importance of Password Security
My account was caught sending out spam