aWeber Compromised?

by 133 replies
Today I am getting deluged with spam to addresses that are on aWeber lists, including a couple of email addresses that have ONLY been given to aWeber.

Anyone else seeing this?

Can I guess that aWeber was hacked or an employee decided to make some money on the side selling addresses?

Regards,
PCRoger.
#main internet marketing discussion forum #aweber #compromised #spam
  • Profile picture of the author Travelingboy
    Banned
    [DELETED]
  • Profile picture of the author Travelingboy
    Banned
    [DELETED]
  • Profile picture of the author Johnathan
    If you believe this is the case -- use a separate e-mail for signing up to lists, something like \"aweber_yourname@wherever.com\"
  • Profile picture of the author Shaun OReilly
    Originally Posted by PCRoger View Post

    Today I am getting deluged with spam to addresses that are on aWeber lists, including a couple of email addresses that have ONLY been given to aWeber.

    Anyone else seeing this?

    Can I guess that aWeber was hacked or an employee decided to make some money on the side selling addresses?

    Regards,
    PCRoger.
    I've been having EXACTLY the same issue.

    I have some test e-mail addresses that I ONLY use within AWeber
    and just today I've started receiving lots of spam to them.

    These are e-mail addresses across multiple domains including my
    own and others such as GMail, etc.

    These e-mails are only housed within AWeber so I know that
    the problem is somewhere within their systems.

    I contacted support and they've passed it on to an administrator
    and of course they've suggested it's my computer but my systems
    are robust.

    Sadly, it seems that I'm not the only one.

    Dedicated to your success,

    *Shaun O'Reilly
    • Profile picture of the author psresearch
      Originally Posted by Shaun OReilly View Post

      I've been having EXACTLY the same issue.

      I have some test e-mail addresses that I ONLY use within AWeber
      and just today I've started receiving lots of spam to them.

      These are e-mail addresses across multiple domains including my
      own and others such as GMail, etc.

      These e-mails are only housed within AWeber so I know that
      the problem is somewhere within their systems.

      I contacted support and they've passed it on to an administrator
      and of course they've suggested it's my computer but my systems
      are robust.

      Sadly, it seems that I'm not the only one.

      Dedicated to your success,

      *Shaun O'Reilly
      Sounds like good ol' aweber "support". Awesome service, but I've never been impressed with support.
  • Profile picture of the author KristiDaniels
    Looks the same to me. I'm glad I don't use Aweber anymore.

    The staff is awesome. But their deliverability and their options always left a lot to be desired.

    Now if they have been hacked, their deliverability will be almost nil. Merry Christmas to all Warriors still stuck on Aweber!
  • Profile picture of the author jennydor
    Banned
    [DELETED]
  • Profile picture of the author KarlWarren
    Experiment...

    Set up a brand new email address and give it to NOBODY... I guarantee you get spam.
    Without a doubt. Especially if it is @gmail, @yahoo or @yoursite.com

    Why automatically point blame?
    • Profile picture of the author Shaun OReilly
      Originally Posted by KarlWarren View Post

      Experiment...

      Set up a brand new email address and give it to NOBODY... I guarantee you get spam.
      Without a doubt. Especially if it is @gmail, @yahoo or @yoursite.com

      Why automatically point blame?
      This isn't about blaming AWeber or anyone else.

      These are e-mail address that are ONLY housed within my
      AWeber account and not used anywhere else. They've been
      spamless for over a year
      and then suddenly today they're
      getting spam.

      I backtracked from all of the e-mail addresses and found the
      one common thing: they're all housed within AWeber.

      If it were just me, I'd think again. But others are reporting
      the same thing as happening today for them too.

      The common link? AWeber.

      That's not blame. It's deduction.

      I could be wrong but I don't think so.

      More importantly, I'm concerned for the e-mail addresses
      of my valued subscribers and customers too as I've entrusted
      them with AWeber for years.

      Dedicated to your success,

      *Shaun O'Reilly
    • Profile picture of the author Trader54
      Originally Posted by KarlWarren View Post

      Experiment...

      Set up a brand new email address and give it to NOBODY... I guarantee you get spam.
      Without a doubt. Especially if it is @gmail, @yahoo or @yoursite.com

      Why automatically point blame?
      I have had the same experience, add hotmail to that list to. I opened a hotmail account
      and within a week was receiving spam and had not given out the address or used it in any way.
    • Profile picture of the author PCRoger
      Originally Posted by KarlWarren View Post

      Experiment...

      Set up a brand new email address and give it to NOBODY... I guarantee you get spam.
      Without a doubt. Especially if it is @gmail, @yahoo or @yoursite.com

      Why automatically point blame?
      This is not automatic blame. This just started today. Every address was created solely for a list signup. One address was given ONLY to aweber for my account there.

      20 or so addresses, all starting today, coincidence? I don't think so.

      If you create a brand new email address on a domain you own, you will NOT automatically start receiving spam.

      Roger.
  • Profile picture of the author 52.ct
    Originally Posted by PCRoger View Post

    Today I am getting deluged with spam to addresses that are on aWeber lists, including a couple of email addresses that have ONLY been given to aWeber.

    Anyone else seeing this?

    Can I guess that aWeber was hacked or an employee decided to make some money on the side selling addresses?

    Regards,
    PCRoger.
    I to have been getting spammed to death with porn a pharm email. I already use separate emails for everything. Some of those email address were used with Aweber.
  • Profile picture of the author KirkMcD
    I'm having the same problem. Emails I've used to test my autoresopnders are getting a lot of spam today. They are totally made up, unique, and posted no where, so they weren't guessed.
  • Profile picture of the author AceOfShirts
    Yeah, same thing happened to me today.

    It's kind of a relief that it is happening to other people also. I set up a lot of email forwarders in my cpanel. I was thinking somebody hacked my cpanel and got all of the email account names and email forwarding names, and probably did more damage I hadn't found yet.

    I vote for aweber,

    Dennis Graves
    • Profile picture of the author Shaun OReilly
      Originally Posted by dnsg View Post

      I was thinking somebody hacked my cpanel and got all of the email account names and email forwarding names, and probably did more damage I hadn't found yet.
      Initially I thought the same too as a lot of the spam is going to
      forwarding e-mail addresses within my cpanel.

      But...

      The spam is also going to e-mail addresses within GMail etc, -
      where none existed before today. And they're unique e-mail
      addresses too by using the '+' sign to identify the source.

      E.g. name+uniquesource@googlemail.com

      Zero spam for a year, and now flooded today.

      All housed within AWeber only.

      Dedicated to your success,

      *Shaun O'Reilly
  • Profile picture of the author Chris Simpson
    Exactly the same happened to me today. I always use thesitedomain at mydomain.com when I give an email address to anyone and it was those addresses that got spammed. Like others have said in this thread, the only one thing those email addresses all had in common were that they were subscribed to aweber lists.

    It's also not just limited to my domain. I also have some gmail addresses that I've mainly used for testing my own lists and those got spammed as well.
  • Profile picture of the author PCRoger
    Sure will.

    Roger.
    • Profile picture of the author ExRat
      Hi,

      I read this thread yesterday. Then this morning, I got deluged with spam on email addresses that I created specifically for use only with twitter and have only used to create accounts with twitter - although the twitter accounts are not actually active (IE I haven't tweeted.)

      Twitter - which was allegedly hacked by Iranians, or someone pretending to be Iranian, the other day.

      Anyone else?
  • Profile picture of the author Stephen Root
    Hmm... sounds really suspicious and we use Aweber for multiple businesses. I wonder if it's time to change. Can somebody post the spam message they got so I can check if we got those too. Nowadays there's just so much spam that it all gets filtered.
  • Profile picture of the author tknoppe
    Sadly, spam is a part of our lives and something we have to deal with. I have spam filters in place that catch most of it. While I've not always used unique email addresses for every Aweber list I've signed up for, I do have some email addresses that have been setup within my cpanel, never used anywhere and eventually they too receive spam.

    I don't believe that my cpanel was compromised, but more likely that there are spam software/bots (whatever) that sequence through randomly created email addresses and eventually that automated process will actually deliver a valid email address somewhere and the spam mail gets through.

    While it's certainly possible that Aweber was compromised, it could be equally as plausible that spammers are using some random email generator script.
    • Profile picture of the author PCRoger
      Originally Posted by tknoppe View Post


      While it's certainly possible that Aweber was compromised, it could be equally as plausible that spammers are using some random email generator script.
      I thought about that, but ruled it out immediately. I have 1 domain in the pack that is a catchall. anything @ thatdomain.com will come through to me. Only the aweber address did.

      Also, hacking someone who had a list at aweber (mentioned somewhere above) would not do it (completely).

      Not only are there 20 addresses I have on 20 different lists (ie, 20 hacks), my unique address that I gave ONLY to aweber to use for my account with aweber and not on any lists also received the same spam message.

      Roger.
  • Profile picture of the author DaveDaveDave
    Shaun, I am with you, I have (Friday) received bursts of spam email to approx 15 out of several hundred unique email addresses I have registered with various companies.
    The common factor seems to be aweber (I gave up checking them all as was out of time), also I can't say whether I have other emails handled by aweber that aren't being spammed. I am not an aweber user.
    I have submitted a support request at aweber and suggested I will require compensation for the inconvenience (changing each email).

    I've seen this happen before too, both to me and reported on the web (I can't post links, so search..) "SpamCop Discussion > How do I sue an identifiable Texan spammer illegally using traceable email addresses?"
    [if this is a duplicate post, apologies, but it seems to have disappeared]
  • Profile picture of the author Damien Roche
    So strange. This didn't make any sense as I'd only used aweber once until Shaun detailed some of the addresses these were sent from.

    Happened to my gmail address from exactly the same email addresses. I received about 5 in one day and my account has never received spam in over 2 years.

    Could be aweber as I have had an account with them, but not any more...think they still keep my email on file?

    These psychopathic spammers are relentless.
  • Profile picture of the author KristiDaniels
    I show deliverability drops already from Aweber hosted lists. They were at 81.18% deliverability across all test lists. They have dropped to 74.93% deliverability in the last two days since the spam started.

    If the spam isn't due to an Aweber compromise, then why has the trust level of major email ISPs toward Aweber dropped so much?

    The ISPs aren't buying the "we aren't compromised" bury their head in the sand position of Aweber.
    • Profile picture of the author DaveDaveDave
      re "I show deliverability drops already from Aweber hosted lists."
      Maybe there's something I'm missing here, but the spam I'm referring to is not coming from/via aweber, it is simply spam (from dsls generally so botnets presumably) that is addressed to email names that have previously been delivered to by aweber. Thus I don't see how this would affect aweber's normal delivery stats.
  • Profile picture of the author Sir Dancelot
    I am not a customer of aWeber.

    I've signed up for several aWeber lists and unsubscribed many of them.

    I give a unique email address to each list I subscribe to. I have hundreds of these unique addresses, as I give a unique address to any web site that asks for one. I have a unique one here at warriorforum.

    Since yesterday, I've received five spams to five unique email addresses I've only given to aweber users. These spam are all similar to each other.

    I have hundreds of other email addresses that I've given to non-aweber lists and sites and I've not received any spam to those addresses.

    QED

    I also contacted aweber, sent them complete headers and got the same boilerplate response that Shaun reported. I then wrote them to check out this forum.
    • Profile picture of the author kyleb
      I just started receiving those as well to a couple of email addresses I have used to sign up on Aweber lists, but also on some other mailing lists...

      I hope Aweber wasn't hacked! I use them for all my subscribers.

      Kyle
  • Profile picture of the author RobJones
    Yes, Aweber got compromised and I can prove it without any doubt.
    See my post here:
    http://www.warriorforum.com/main-int...u-so-much.html


    .
    • Profile picture of the author 52.ct
      If Aweber was hacked and they (Aweber) are burring it; then allot of people int he IM world are going to be f*cked

      Maybe it is a good ideal, for anyone using Aweber, to send a test message to their list. Explain the situation... maybe even reference this thread. That way your list will know that it was not you who sent the spam.

      Also, ask if anyone from your list, if they received spam from an unique email address used specifically for your newsletter,then enter a new and unique email into Aweber.

      If they still receive spam on this new email address then we will know Aweber was compromised.

      I personally have roughly 220-230 different email addresses. About 35 on those have received spam thus far. One third of those email addresses are still active. The rest have been unsubscribed from their respective list.
  • Profile picture of the author RobJones
    Yes, Aweber was hacked and I can prove it with 100% certainty.
    (Everyone can contact me via PM)

    Of course, the spammers aren't sending emails via Aweber's servers. (they, the spammers, are sure not that dumb)
    The spammers have just hacked Aweber's servers, extracted the email addresses from Aweber's data base(s) and are now happily sending tons of spams using their own untraceable spam bots.

    That means:
    From now on ALL the compromised email addresses will ALWAYS receive tons of spam.
    The only way to stop those spam floods would be to stop using those email addresses.
    And that in turn would also mean to stop receiving emails from all those marketers who are using Aweber...

Next Topics on Trending Feed