spam: several secret inboxes targeted at once. risk or coincidence?
I have a domain that is only used by me, with several inboxes in the format aep-x-company@domain, where I replace 'company' with wherever I sign up. This way I can detect when someone sells email addresses.
However, since yesterday I have been receiving spam on about 10 of them simultaneously. The source are infected servers, valid headers and everything. The content contains no links, and no fraud, it is a sequence of unrelated sentences in english. Likely designed to get a low Bayes spam ranking.
There is no list of valid inboxes on my mail server; it's just a regex that maps foo-x-bar to foo. I use Roundcube as webmail, which can only be accessed through https, and I only use Chrome on Linux.
Breakdown on what these inboxes are: 2 porn sites, 2 dating sites, 4 publicly visible addresses, 1 dropbox, 1 online shop
Especially Dropbox makes me wonder if it's really them selling my address or if spammers have compromised one of my systems. How would I know? I see nothing unusual on any of them. None of my machines is sending spam, as far as I can see, so that should be a good sign of being clean, I guess. On the other hand I have no idea what the point of that spam is, since all it does is poison Bayes.
