Gmail Calendar Documents Reader Web more »
Recently Visited Groups | Help | Sign in
Google Groups Home
news.admin.net-abuse.email
+ new post
About this group
Subscribe to this group
This is a Usenet group - learn more
Message from discussion Ameritrade Spam Again
The group you are posting to is a Usenet group. Messages posted to this group will make your email address visible to anyone on the Internet.
Your reply message has not been sent.
Your post was successful
 
From:
To:
Cc:
Followup To:
Add Cc | Add Followup-to | Edit Subject
Subject:
Validation:
For verification purposes please type the characters you see in the picture below or the numbers you hear by clicking the accessibility icon. Listen and type the numbers you hear
 
John Caruso  
View profile  
 More options Aug 11 2006, 5:53 am
Newsgroups: news.admin.net-abuse.email
From: John Caruso <johnSPAMcarAWAY...@myprivacy.ca>
Date: Thu, 10 Aug 2006 17:53:54 GMT
Local: Fri, Aug 11 2006 5:53 am
Subject: Re: Ameritrade Spam Again
Forward | Print | View thread | Show original | Report this message | Find messages by this author
On 2006-07-29, Thomas <tomwin...@gmail.com> wrote:

> Today (7/28/2006) I received a spam at this new address. It is not an
> easily guessed address (aaaaaa-aaaaa-aaa@ourdomain, where a's are
> letters, some random). My machines have not been compromised by
> viruses. The answer is Ameritrade is leaking them, in my opinion.

I've also just been spammed at my Ameritrade-only (unique, never-used-
elsewhere) address.  This follows a similar barrage of spam to that address
a week or so ago.  In both cases the spam I've received to that address
has been stock-related.  So I'd agree that Ameritrade is leaking addresses.

I can't be sure if that's intentional or a result of technical incompetence.
However, as someone mentioned in the December thread on this same topic,
Ameritrade's privacy policy reserves to them the right to share "non-public
personal information" with anyone at all.  They have an opt out for that,
and I always scour web sites for privacy information, opt-outs, and mailing
list unsubscriptions, so I would almost certainly have found that one.
But corporations like Ameritrade will often add a new opt-out (default to
opt-in, of course) without mentioning it--and you don't find out about it
until they've already used it against you.

So my presumption is that they simply sold my address, and yours, and
presumably many others as well.

> I have decided to perform an experiment. I have just updated my
> ameritrade addresses to a set of 47 random characters, drawn from a
> 38-character pool (a-z, 0-9, dash, and period).

I've done something similar: changed to a date-stamped address with various
pseudo-random stuff in it.  Certainly nothing a brute force email generator
would ever stumble across.  I'm debating now whether to write to the SEC's
enforcem...@sec.gov address immediately, or hold off until this new address
gets spammed.

I haven't bothered contacting Ameritrade and won't, since I won't add the
insult of wasting hours of my time to the injury of them sharing my address
with spammers; that time can be more profitably spent searching for a new
online broker who doesn't sell personal information.

- John


    Forward  
You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.
Create a group - Google Groups - Google Home - Terms of Service - Privacy Policy
©2010 Google