Spam and Phishing from Cloudflare Servers

I receive a massive amount of spam and phishing emails daily from Cloudflare’s servers.
please stop!
Cloudflare’s whistleblower system is flawed in requiring an evidence link to be provided. Obviously this link doesn’t point to a Cloudflare server, it points to somewhere else. in this case, it is not possible to file a complaint.
But the emails are coming through the Cloudflare server.

Here’s an example:

Received: from . colegioritadecassia .com [194.87.185.68])
by burns0253.correio.biz (Postfix) with ESMTP id 4LjdXV44dWz2n0
Important Dates

Expires On

2023-07-12

Registered On

2022-07-12

Updated On

2022-07-12

Name Servers

[

[162.159.44.5]( who.is/ whois-ip/ip-address/ 162.159.44.5)

[173.245.58.127]( who.is /whois-ip/ ip-address/ 173.245.58.127)

That one is not coming from Cloudflare. It even says so: Received from 194.87.185.68

% host 194.87.185.68 
68.185.87.194.in-addr.arpa domain name pointer judicial6.colegioritadecassia.com.

Screen Shot 2022-07-13 at 6.50.07 AM776×738 51.7 KB

While that domain uses Cloudflare for authoritative DNS, it’s using a Russian host to send its spam.

Here’s their abuse contact info:

Screen Shot 2022-07-13 at 6.52.24 AM1510×510 96.2 KB

Where is Cloudflare involved here?

Cloudflare has no features that allow you to send emails - this is unrelated to Cloudflare, just because someone’s domain uses Cloudflare for DNS doesn’t mean any of Cloudflare’s servers are sending you email.

Russian IP associated to DZHIBIENHOST

Report it to them if necessary, or their domain registrar at [email protected]

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.