I just received the following email, to an email address that has only ever been used once, to register an AWS account in 2021.<p>---- On Thu, 19 May 2022 03:47:29 +1000 Carent Domingo <yourdomainguru.ren49@gmail.com> wrote ----<p><pre><code> Hello,
My name is Carent from TDS. We have a domain that is currently on sale that you might be interested in - TeamFortress.net
Anytime someone types Team Fortress, Team Fortress Online, The Best Team Fortress, or any other phrase with these keywords into their browser, your site could be the first they see!
The internet is the most efficient way to acquire new customers
Avg Google Search Results for this domain is: 68,500,000
You can easily redirect all the traffic this domain gets to your current site!
GoDaddy.com appraises this domain at $1,345.
Priced at only $398 for a limited time! If interested please go to TeamFortress.net and select Buy Now, or purchase directly at GoDaddy.
Act Fast! First person to select Buy Now gets it!
Thank you very much for your time.
Top Domain Sellers (TDS)
Carent Domingo</code></pre>
This is almost certainly leaking without you realizing it via a WHOIS contact email somewhere or another<p>Another possibilty is that overseas contractors for AWS regularly harvest email addresses from the support UI and spam them. Wouldn't surprise me, but the first is more likely. Wouldn't really call this a hack though either way.
AWS could be hacked... but the other logical options are your email provider was hacked... or some other PI/hacker who really cares about you (due to team fortress) has figured out your naming pattern from other sources and is probing you, either with or without that domain name company's help?
Considering you're a developer of a game called "team fortress" (based on your HN comment history) who had a domain for team fortress with WHOIS info updated in 2021, I'd say that its probably someone on your dev team trying to make a few bucks and knew the address. But maybe you registered this with Cloudflare and forgot, and Cloudflare is forwarding the email to you.
Are you certain you did not use the email anywhere else, including in WHOIS records for any domain?<p>Is the email predictable?<p>I use a dedicated email address for AWS and I have only ever received AWS correspondence to it.