Ask HN: Does reporting spam/phishing help at all?

2•martin_a•6mo ago

Hey! So, I received a spam mail and I found it funny because it uses an .xlsx.svg file, so I took a look at it.

It's an order page but obviously you have to enter your mail address and password to unlock the order details.

Well, that's not really what it does, but there's some script loaded from jsdelivr.net and a .ge domain that receives the payload that gets sent there.

Now I'm wondering if I should take the time to report the repository/script to jsdelivr and contact the NIC of the .ge domain to get it taken offline. Maybe that's just a waste of time.

Did anybody of you have any luck with reporting things like these?

(Maybe I should rather send requests with fake data to that endpoint and see what it does and open a cold one in that time... :-D)

Comments

Bender•6mo ago

In the past I reported massive amounts of spam to SpamCop [1] but it only helps the businesses that utilize data from SpamCop. Some do this transparently in the background so it's hard to say how effective it is. I used SpamCop, UceProtect, SpamHaus on my servers so it helped me. I also accepted the fact that by reporting them with full headers also increased the spam sent to me but I was OK with that.

[1] - https://www.spamcop.net/

martin_a•6mo ago

Thanks, I will look into that!

Robust and Interactable World Models in Computer Vision [video]

Nestlé couldn't crack Japan's coffee market.Then they hired a child psychologist

Notes for February 2-7

Study confirms experience beats youthful enthusiasm

The Big Hunger by Walter J Miller, Jr. (1952)

The Genus Amanita

We have broken SHA-1 in practice

Ask HN: Was my first management job bad, or is this what management is like?

Ask HN: How to Reduce Time Spent Crimping?

KV Cache Transform Coding for Compact Storage in LLM Inference

A quantitative, multimodal wearable bioelectronic device for stress assessment

Why Big Tech Is Throwing Cash into India in Quest for AI Supremacy

How to shoot yourself in the foot – 2026 edition

Eight More Months of Agents

From Human Thought to Machine Coordination

The new X API pricing must be a joke

Show HN: RMA Dashboard fast SAST results for monorepos (SARIF and triage)

Show HN: Source code graphRAG for Java/Kotlin development based on jQAssistant

Python Only Has One Real Competitor

Tmux to Zellij (and Back)

Ask HN: How are you using specialized agents to accelerate your work?

Passing user_id through 6 services? OTel Baggage fixes this

DavMail Pop/IMAP/SMTP/Caldav/Carddav/LDAP Exchange Gateway

Visual data modelling in the browser (open source)

Show HN: Tharos – CLI to find and autofix security bugs using local LLMs

Oddly Simple GUI Programs

The New Playbook for Leaders [pdf]

Interactive Unboxing of J Dilla's Donuts

OneCourt helps blind and low-vision fans to track Super Bowl live

Rudolf Vrba