REW

Who Sends All The Spam Emails?

Published Aug 29, 2025 4 min read
On this page

Email spam is sent by a decentralized and constantly shifting network of individuals and organizations, not a single entity. This network includes:

  • Professional spammers: Individuals or groups whose business is to illegally harvest email addresses and distribute unsolicited bulk emails.
  • Advertisers: Some businesses, both reputable and lesser-known, contract with professional spammers to send out promotions. This is sometimes called "Mainsleaze".
  • Cybercriminals: Malicious actors who use spam emails as a vehicle to spread malware, launch phishing attacks, or perpetuate scams to commit identity theft or fraud.
  • Botnet operators: Individuals who control "botnets"—networks of compromised computers infected with malware. These infected machines, or "zombies," are used to send massive volumes of spam without the owners' knowledge.
  • Unknowing spammers: Regular people whose computers have been hacked and co-opted into a botnet to send spam.

The motivations behind these operations vary, from straightforward financial gain to more sophisticated criminal activities.

The spam ecosystem: How it works and who is involved

The process of sending spam is an elaborate and industrialized operation, not a simple individual act. The spam ecosystem operates in a multi-layered, clandestine manner to evade law enforcement and email filters.

How spammers get your email address

Spammers utilize a variety of methods to build the massive email lists required for their campaigns:

  • Email harvesting: Automated software called "harvesters" or "spambots" crawl the internet, scraping email addresses from websites, social media platforms, online forums, and mailing lists.
  • Data breaches: Stolen email lists from company data breaches are frequently sold on the dark web. If your email address was compromised in a breach, it's likely being used for spam.
  • Purchased lists: Spammers can illegally buy email lists from third-party data brokers.
  • Dictionary attacks: Automated programs generate common email address combinations (e.g., info@, sales@, john.doe@) and send emails to them, discarding the ones that bounce.
  • Tricking friends: Cybercriminals sometimes send emails that appear to be from someone you know, using a friend's compromised account or information gathered from social media.

How spammers send emails

The distribution of spam relies on a range of technical tactics designed to overwhelm spam filters and disguise the sender's identity.

  • Botnets: The vast majority of spam is sent by botnets—networks of zombie computers under the control of a single operator. This decentralized system allows spammers to send emails from thousands of different IP addresses, making them extremely difficult to block.
  • Email spoofing: Phishers and spammers use spoofing to make an email appear to originate from a legitimate, trusted source, like a bank or a well-known company.
  • Image spam: To bypass text-based spam filters, spammers embed their messages within images (JPEG, GIF, etc.). This tricks older filters into missing the malicious or promotional content.
  • Snowshoe spamming: In this technique, spammers distribute their emails over a large number of IP addresses to make each volume appear too small to trigger spam filters. The effect is like walking on snowshoes, spreading out the spam load to avoid detection.

The criminal elements and motivations

Spam is not just a nuisance; it is a serious security threat with significant criminal connections. The financial incentive is the primary driver, with a small number of hardcore spamming gangs responsible for the majority of all spam.

  • Phishing attacks: These are fraudulent attempts to acquire sensitive information, such as login credentials and credit card details, by disguising as a trustworthy entity.
  • Malware and ransomware delivery: Spam is a leading vector for delivering malicious software. Attachments or links in spam emails can infect a user's system with malware or ransomware, which encrypts files and demands payment.
  • Nigerian prince scams: These are well-known examples of advance-fee fraud, where the recipient is promised a large sum of money in exchange for a smaller "advance fee".
  • Illegal product sales: Spam is often used to promote illicit pharmaceuticals, pirated software, or fraudulent investment schemes.

The cost of spam

The financial burden of spam is substantial, affecting individuals, businesses, and even the environment.

  • Financial losses: Companies suffer billions of dollars in annual losses from spam-related costs, including lost productivity, the resources to combat spam, and financial fraud.
  • Bandwidth consumption: Spammers exploit internet service provider (ISP) bandwidth, clogging networks and slowing internet access. The cost of dealing with this is often passed on to consumers.
  • Emotional and psychological impact: The constant barrage of spam can negatively affect a person's mental state, causing stress and eroding trust in online communication.

What is being done to fight back?

The war on spam is fought on multiple fronts by governments, corporations, and individuals.

  • Legislation: Countries like the U.S. have passed laws such as the CAN-SPAM Act, which sets requirements for commercial emails and levies heavy penalties for violations.
  • Spam filters: Email providers like Google and Microsoft invest heavily in advanced AI and machine learning to filter out over 99.9% of incoming spam.
  • Vigilance: Individuals and businesses are encouraged to practice better digital hygiene by not clicking on suspicious links, using strong passwords, and being cautious about where they provide their email address.
  • Reporting: Reporting spam to your email provider or authorities like the FTC helps improve filters and provides data to track down offenders.
Enjoyed this article? Share it with a friend.