SFX = email scam, anybody's got an explanation?

Asa confirmed that this mail is genuine, but I still want to know why he send out such a scam-like spy-mail.

• The mail is lying by hiding its urls: it shows fxflicks.com but is really going to cmail1.com
  
• It is spying by counting who clicked on which links. (individualised numbers in the url)
• It is spyware by using a web-bug (invisible, individualised 1x1px
  image on a remote server) to tell who is reading the mail and when he
  is doing it.

I always thought mozilla is a company/organisation which honors safety and privacy on the net. I have to confess that I am very dissapointed that they are now using such spam/scam-methods.

Asa, could you please explain why do you need to know when and where I read my mail and which links I click.

And Asa, could you please give informations on the privacy statements of sfx, mozilla and cmail1.com? 

I'm damn sure I never ever subscribed to a newsletter from campaignmonitor.com or cmail1.com. Did sfx gave our email addresses to campaignmonitor.com?

Jan

Please read Asa's comments in this post for the reason for the thunderbird notice.

Again for clarity as there have been some more postings since Asa commented, we can confirm that the email is 100% genuine.

Bottom line, Firefox Flicks is part of a specific Spread Firefox marketing campaign under the direct control of Mozilla so it is logical that all Spread Firefox members should be included in any update news that Mozilla want to inform us about via email.

Moreover, if you think about it; If SFx members were not included "in the loop" I'm sure there would be far more complaints about not being kept up to date ;)

 - Ian

Well as far as I know there is only one Asa at Mozilla and I did subscribe to the newsletter and so must have all of you who got it. I really don’t see the big deal.
You can read the sender address or just read the text and know that it isn’t a scam.
The email isn’t asking for personal information or asking you to send $, and there’s an unsubscribe notice at the bottom.
Alternatively you can just go to Firefox Flicks Backstage to get the latest on what’s happening behind the scenes.
And Tbird has picked up on actual e-mail scams for me such as PayPal ones.


Spreading Fx Flicks?

 A couple of months ago I did some research on how Thunderbird's scam detection works.  To quote from my post:

• Links that only use an IP address, including dotted decimal, octal, hex, dword, or some mixed encoding.
• Links that claim to go to one site, but actually go to another. (Phishers do this to fool you into going to their site. Legit mailing lists sometimes do this with redirectors for tracking purposes.)
• Forms embedded in the email. (This explains the LiveJournal notices.)

Personally I think it's overkill, and I've considered disabling it.  I've seen it trip on a lot of stuff I know is legit, and I've never seen it hit an actual scam, but that's partly because my mail server strips out most of the real ones with ClamAV and SpamAssassin, so the sample is biased.

Anyway, as Asa pointed out, the redirector link is the reason this got tagged.

--

Can Firefox users and Opera fans agree on anything?
The Alternative Browser Alliance

Now I'm terribly confused! Thunderbird didn't say anything to me, but I don't have any spam filters set up (I rarely give out my email address and get little to no spam). It seemed valid and the links did go to the official Firefox flicks website.

So my question is: Is this email valid or not? Thanks in advance.
 

This email is in fact from me.

- Asa

I've set TB to only display the plaintext part of the email, so I got this:

In fact from looking at the source (ctrl+u), all of the links in the HTML version appear to be going to that server with unique tracking IDs. Even the links labelled as going to a different site. That's not all, it's got a hidden tracking image at the bottom.

If anyone else gets this email after they see this post, make sure you've turned off remote images in TB. This is exactly what it's there for. This email looks like classic spam bait, trying to find out which email accounts get read so the spammer can target them.

...if this is really from Mozilla, I'll be _very_ annoyed. For now I'll give them the benefit of the doubt.

Also if you look at you picture  (above message pane; right) and you look at firefox flicks for preparation you see that all the other (blurred) subjects start to scroll! What is up with that?

Thundebird is cautious because it seems like a mailing list.

Marco

-- room for rent --