Date   

locked Re: Is GMAIL putting groups.io in promo tab?

Brian Vogel <britechguy@...>
 

Well, since what gets put in "Promotions" is the direct result of the Gmail equivalent of message filtering there has got to be *something* about the digest content itself that's triggering that filter.

If this is a big concern then the "offending content" (for lack of a better term) needs to be determined that triggers the filter.

Another option is to create a filter in Gmail itself on e-mail coming from digestnoreply@groups.io doing something like always marking said messages as important, which effectively prevents them from ever going into Promotions.  I realize this is a workaround, but it can at least solve the problem from the user end until the "trigger" for what's getting certain digests categorized as Promotions can be determined.

Brian


locked Re: Is GMAIL putting groups.io in promo tab?

Brian Vogel <britechguy@...>
 

J_catlady,

I also forgot to add that I get that "selectively in promotions" behavior for a number of non-groups.io e-mail messages I receive, some of which actually are promotions that end up in my inbox and some of which are not promotions that end up in my promotions.

If I drag a couple of the ones that landed in promotions into my inbox tab Gmail tends to learn that I don't consider these promotions, too.  Gmail works in mysterious ways at times.


locked Re: New subscription option?

Brian Vogel <britechguy@...>
 

Mark,

          If this is not difficult to do it certainly would be a nice feature.

          Historically I've been accustomed to digests being generated once every 24 hours at the time designated by the software that controls digest creation.  On these forums I think it was you that told me that they get generated either once every 24 hours when traffic is slow or once every 25 new messages received on a given forum when traffic is fast.  I would imagine that on certain forums that could result in a deluge of digests and, depending on how the digest creation actually works and keeps track of what it has already sent for a given user, possible result in digests that get "bigger and bigger" if the message selection criteria is based on a hard date/time rather than "when was the last date/time I used to create a digest for this particular user."

Brian


locked Re: Spammer attack- More bad news

Brian Vogel <britechguy@...>
 

Vickie,

           Different strokes for different folks.  I also suggest you show me anything that reports that Hillary Clinton's e-mail was actually hacked - so far there's not been a single report that it was hacked and many reports indicating that it was not.  Speculation is rife and a lot of that speculation strains credulity.

Brian


locked Re: Spammer attack- More bad news

Brian Vogel <britechguy@...>
 

J_catlady,

        I read what it says, but I don't necessarily believe everything I read.  What makes that claim particularly "fishy" as far as I'm concerned is the statement that the alleged hacker was willing to hand this data over "for fame."

        If he was selling on the black market, this information had far more financial value to him than fame does, and criminals in it for the money are generally doing every last thing they can to remain in the shadows.

        There's a lot of hype in the tech press.  I don't doubt the hack, I do doubt that anyone actually knows what the hacker did with the data.

        Like I said, one must undertake a risk assessment and act accordingly.  In my case acting accordingly is simply watchful waiting.  If any suspicious activity turns up in the next few days to weeks then I'll do something more.  I'm not expecting to have to do more.

Brian


locked Re: Spammer attack- More bad news

vickie <vickie_00@...>
 

J,  >>>This one says they're being traded on the black market.


According to this website it's a booming business.  More money  than selling drugs..

To   Brian Vogel,  though you feel differently  about it  I give an example of Hillary Clinton a government official   suffering the affects of her email   being hacked.  

I choose to  use caution at all times.

 

Vickie

 









From: J_catlady <j.olivia.catlady@...>
To: beta@groups.io
Sent: Sunday, May 8, 2016 12:35 PM
Subject: Re: [beta] Spammer attack- More bad news

This one says they're being traded on the black market.

On Sun, May 8, 2016 at 9:30 AM, Brian Vogel <britechguy@...> wrote:
Related to Vickie's response, my degree of paranoia regarding any potential security breach is predicated on how much immediate damage might result.  If it's huge, that gets one set of precautionary actions, if not, it gets another.
My experience with most of these e-mail account hacks is that they're done "for the glory of it" and very little else.  These days there's little need to actually hack into someone's actual e-mail account when spoofing is such an easy thing to do.  Throw a sniffer out there, collect some random e-mail addresses, and create your spam or phishing messages using those or by using the e-mail address of the actual business you're trying to make yourself appear to be.
In general, I've gotten pretty far away from the, "I need to change my password yesterday!!," position based on too many years of experience with these sorts of hacks.  Others, of course, feel differently and act differently.  It's a matter of personal risk assessment and what risks you're comfortable in accepting.
Brian


--
J
It's dumb to buy smart water.



locked Re: Spammer attack- More bad news

 

This one says they're being traded on the black market.

On Sun, May 8, 2016 at 9:30 AM, Brian Vogel <britechguy@...> wrote:

Related to Vickie's response, my degree of paranoia regarding any potential security breach is predicated on how much immediate damage might result.  If it's huge, that gets one set of precautionary actions, if not, it gets another.

My experience with most of these e-mail account hacks is that they're done "for the glory of it" and very little else.  These days there's little need to actually hack into someone's actual e-mail account when spoofing is such an easy thing to do.  Throw a sniffer out there, collect some random e-mail addresses, and create your spam or phishing messages using those or by using the e-mail address of the actual business you're trying to make yourself appear to be.

In general, I've gotten pretty far away from the, "I need to change my password yesterday!!," position based on too many years of experience with these sorts of hacks.  Others, of course, feel differently and act differently.  It's a matter of personal risk assessment and what risks you're comfortable in accepting.

Brian



--
J

It's dumb to buy smart water.


locked Re: Spammer attack- More bad news

Brian Vogel <britechguy@...>
 

Related to Vickie's response, my degree of paranoia regarding any potential security breach is predicated on how much immediate damage might result.  If it's huge, that gets one set of precautionary actions, if not, it gets another.

My experience with most of these e-mail account hacks is that they're done "for the glory of it" and very little else.  These days there's little need to actually hack into someone's actual e-mail account when spoofing is such an easy thing to do.  Throw a sniffer out there, collect some random e-mail addresses, and create your spam or phishing messages using those or by using the e-mail address of the actual business you're trying to make yourself appear to be.

In general, I've gotten pretty far away from the, "I need to change my password yesterday!!," position based on too many years of experience with these sorts of hacks.  Others, of course, feel differently and act differently.  It's a matter of personal risk assessment and what risks you're comfortable in accepting.

Brian


locked Re: Spammer attack- More bad news

vickie <vickie_00@...>
 

Nothing wrong with being overly paranoid,  especially if you own a business.. 
If they can hack microsoft, yahoo , Hotmail,   and more  I say  lean on being paranoid lol .

Vickie

 









From: J_catlady <j.olivia.catlady@...>
To: beta@groups.io
Sent: Sunday, May 8, 2016 12:11 PM
Subject: Re: [beta] Spammer attack- More bad news

I guess I worry that a hacker will get in and change my password and then, because I can no longer log in, I won't get the warning email. But maybe that's being overly paranoid. :-)
--
J
It's dumb to buy smart water.



locked Re: Spammer attack- More bad news

 

I guess I worry that a hacker will get in and change my password and then, because I can no longer log in, I won't get the warning email. But maybe that's being overly paranoid. :-)
--
J

It's dumb to buy smart water.


locked Re: Is GMAIL putting groups.io in promo tab?

 

How can we reach the digest members to inform them about this problem? Does a "special notice" message get delivered individually to digest member,s or does it just go into their digest (which then goes into the "promotions" black hole)? Perhaps it's worth sending individual emails to each digest member about this?
--
J

It's dumb to buy smart water.


locked Re: Multiple copies of a posting

 

Well, none of them have the <Edited Message> and all 3 have the same message number.   I am the group owner, so I doubt if these are boncing.   I think they are all submitted by e-mail, and it's ALL the emssages, not just some.   Any more ideas?   Mark?

Best regards

Alastair Sharp


locked Re: Spammer attack- More bad news

Brian Vogel <britechguy@...>
 

Since Google sends you an e-mail message noting when your account has been used to log in for any of its services on any machine or from any location it doesn't already recognize as associated with you.  There will be warning if someone has accessed your account who wasn't you.

I don't rush to change passwords anymore on Google/Gmail because of this.  

Brian


locked Re: Is GMAIL putting groups.io in promo tab?

 

On 5/8/2016 6:32 AM, J_catlady wrote:

I'm not sure I agree, Shal, that it's like spam. The messages I've seen
in promotions have looked more to me like paid advertisements than the
usual spam messages. ???
Most are paid ads, but other things get in there also - and I suspect it
is based on who it's from. All of the mail from the Geek Squad on my
computer status are in there, so the filter for GMail probably says
Best Buy=store=ad, and is not bothering to use more finesse than that.

Also - all the monthly probes from my Mail-Man lists wind up there, no
matter where the list is housed.

dg


locked Re: Spammer attack- More bad news

vickie <vickie_00@...>
 

Yes, absolutely


 

Vickie 

 









From: J_catlady <j.olivia.catlady@...>
To: beta@groups.io
Sent: Sunday, May 8, 2016 11:12 AM
Subject: Re: [beta] Spammer attack- More bad news

Of course. But it's worth repeating that information.

On Sun, May 8, 2016 at 8:06 AM, vickie via Groups.io <vickie_00@...> wrote:
 I am sure some groups have international members .


 Ditto -But you can't be too careful.
-- 

 

Vickie

 









From: J_catlady <j.olivia.catlady@...>
To: beta@groups.io
Sent: Sunday, May 8, 2016 11:02 AM
Subject: Re: [beta] Spammer attack- More bad news

From the Reuters link it seems that it was mainly the Russian email server that was compromised, with smaller fractions of yahoo and google. But you can't be too careful.
--
J
It's dumb to buy smart water.




--
J
It's dumb to buy smart water.



locked Re: Spammer attack- More bad news

 

Of course. But it's worth repeating that information.

On Sun, May 8, 2016 at 8:06 AM, vickie via Groups.io <vickie_00@...> wrote:
 I am sure some groups have international members .


 Ditto -But you can't be too careful.
-- 

 

Vickie

 









From: J_catlady <j.olivia.catlady@...>
To: beta@groups.io
Sent: Sunday, May 8, 2016 11:02 AM
Subject: Re: [beta] Spammer attack- More bad news

From the Reuters link it seems that it was mainly the Russian email server that was compromised, with smaller fractions of yahoo and google. But you can't be too careful.
--
J
It's dumb to buy smart water.




--
J

It's dumb to buy smart water.


locked Re: Spammer attack- More bad news

vickie <vickie_00@...>
 

 I am sure some groups have international members .


 Ditto -But you can't be too careful.
-- 

 

Vickie

 









From: J_catlady <j.olivia.catlady@...>
To: beta@groups.io
Sent: Sunday, May 8, 2016 11:02 AM
Subject: Re: [beta] Spammer attack- More bad news

From the Reuters link it seems that it was mainly the Russian email server that was compromised, with smaller fractions of yahoo and google. But you can't be too careful.
--
J
It's dumb to buy smart water.



locked Re: Spammer attack- More bad news

 

From the Reuters link it seems that it was mainly the Russian email server that was compromised, with smaller fractions of yahoo and google. But you can't be too careful.
--
J

It's dumb to buy smart water.


locked Re: Spammer attack- More bad news

vickie <vickie_00@...>
 

Your welcome J..  
Wish I knew the spammers email that attacked Mark so I can block that email.
One can't be too careful. 

Hope you have a very special mothers day today

  
Vickie

 









From: J_catlady <j.olivia.catlady@...>
To: beta@groups.io
Sent: Sunday, May 8, 2016 10:54 AM
Subject: Re: [beta] Spammer attack- More bad news

Vickie,

Thanks for this. I'll forward it to my group immediately and change all my passwords.

On Sun, May 8, 2016 at 7:39 AM, vickie via Groups.io <vickie_00@...> wrote:
I am  behind  on beta messages.  However  I  have more bad news I feel everyone should  be informed  about .
To be on the safe side Moderators should advise their members to change their passwords because this is a HUGE 
breach of emails. 

May 7th, 2016 at 12:56 pm



 

Vickie

 









From: Mark Fletcher <markf@corp.groups.io>
To: beta@groups.io
Sent: Monday, May 2, 2016 11:15 AM
Subject: [beta] Spammer attack

Hi All,

Yesterday afternoon, a spammer created a couple of groups and then used the invite feature to invite a few hundred thousand people to his spam lists. We had restrictions in place against inviting that many people, but there was a bug and it didn't work. I disabled the groups and re-did the restriction conditions for inviting. Early this morning, he struck again, and unfortunately was able to exploit a different hole in the invite process to send out a lot of invites to his spam groups. I have disabled those groups as well.

Until I can implement a better way of preventing invite abuse, I have had to disable the invite feature for all groups.

During my cleanup of his mess this morning, one of the mail queues got corrupted (I don't know how as of yet). That means some email sent in the last 3 hours or so may not have been delivered. I have the corrupt queue and will try to pull the messages out of it, but I'm not sure how successful I will be.

This incident may unfortunately cause some email providers to temporarily block or delay email from Groups.io. 

I have traded emails with this person. At one point yesterday he offered me $200/month to host his 6M person spam list. I told him to go away; he obviously didn't listen.

I sincerely apologize for all of this. Hardening the service (moreso) against these attacks is my number one priority. I'll keep you updated.

Thanks,
Mark




--
J
It's dumb to buy smart water.



locked Re: Spammer attack- More bad news

 

Vickie,

Thanks for this. I'll forward it to my group immediately and change all my passwords.

On Sun, May 8, 2016 at 7:39 AM, vickie via Groups.io <vickie_00@...> wrote:
I am  behind  on beta messages.  However  I  have more bad news I feel everyone should  be informed  about .
To be on the safe side Moderators should advise their members to change their passwords because this is a HUGE 
breach of emails. 

May 7th, 2016 at 12:56 pm



 

Vickie

 









From: Mark Fletcher <markf@corp.groups.io>
To: beta@groups.io
Sent: Monday, May 2, 2016 11:15 AM
Subject: [beta] Spammer attack

Hi All,

Yesterday afternoon, a spammer created a couple of groups and then used the invite feature to invite a few hundred thousand people to his spam lists. We had restrictions in place against inviting that many people, but there was a bug and it didn't work. I disabled the groups and re-did the restriction conditions for inviting. Early this morning, he struck again, and unfortunately was able to exploit a different hole in the invite process to send out a lot of invites to his spam groups. I have disabled those groups as well.

Until I can implement a better way of preventing invite abuse, I have had to disable the invite feature for all groups.

During my cleanup of his mess this morning, one of the mail queues got corrupted (I don't know how as of yet). That means some email sent in the last 3 hours or so may not have been delivered. I have the corrupt queue and will try to pull the messages out of it, but I'm not sure how successful I will be.

This incident may unfortunately cause some email providers to temporarily block or delay email from Groups.io. 

I have traded emails with this person. At one point yesterday he offered me $200/month to host his 6M person spam list. I told him to go away; he obviously didn't listen.

I sincerely apologize for all of this. Hardening the service (moreso) against these attacks is my number one priority. I'll keep you updated.

Thanks,
Mark




--
J

It's dumb to buy smart water.