Scammers exploited a bug in Gmail to impersonate UPS, Google closed as won’t fix

There doesnt seem to be enough information to corroborate what this person is claiming. Those records are also DNS records, without evidence to the contrary I am assuming that they are functioning as normal, so if there is a problem then it seems reasonable that it is with some one with access to that UPS subdomain.<p>I do not get why gmail is being blamed here, but perhaps I&#x27;m simply missing a concrete detail. Failing that this reads like OP is unwittingly asking google to extend their reach.

It looks like one of those subdomain names used by scammers who use hijacked DNS accounts to create subdomains on legitimate domains and use them for phishing.<p>_IF_ that is the case, then it must have been in the UPS end.

Followup in case anyone sees: turns out OP was correct, a french language Linkedin post that details the exploit: <a href="https:&#x2F;&#x2F;www.linkedin.com&#x2F;posts&#x2F;christophe-dary-85330561_spf-dmarc-bimi-activity-7070510499196489728-pPTh" rel="nofollow">https:&#x2F;&#x2F;www.linkedin.com&#x2F;posts&#x2F;christophe-dary-85330561_spf-...</a>

Gasp, Google ignoring established standards. &#x2F;s<p>Google has a strange relationship with spam. When I operated my own mail server I discovered much more than 50% of spam was from their network.<p>So stuff like this comes at no surprise to me. Where is their incentive to do good? They own a significant part of the email market despite their poor behaviour over the years.

That&#x27;s a weird subdomain, somehow they got one allocated.

That&#x27;s okay, sorbs.net has most of Gmail&#x27;s servers blocked due to spam... the ones that aren&#x27;t will probably get caught by spamassassin.

Logic is the spammers have worked out how to abuse UPS mailing infrastructure.<p>UPS screwing up is more believable than Google.<p>&gt; The sender found a way to dupe @gmail ’s authoritative stamp of approval<p>This has two meanings, if dupe means fool, then no.<p>If dupe means duplicate, aka the spammers are injecting a fake stamp of approval then that&#x27;s interesting.<p>There&#x27;s little to comment on without those headers and email contents.