// THREAT DETECTION AND DATA PRIVACY TERM
Email Bombing
Email bombing is a cyberattack where a massive volume of emails are sent to a single email address to overwhelm the inbox and potentially crash the mail server. This effectively denies the user access to their legitimate emails.

TECHNICAL DEFINITION
Email bombing is a type of Denial of Service (DoS) attack that targets a victim's email address by sending a high-volume flood of messages, often using bots or scripts to subscribe the address to numerous mailing lists (list bombing). This attack vector aims to disrupt communication by overflowing the inbox, hiding legitimate security alerts, and potentially exhausting mail server resources.
BACKGROUND
Computer security is a subdiscipline within the field of information security. It focuses on protecting computer software, systems, and networks from threats that can lead to unauthorized information disclosure, theft, or damage to hardware, software, or data, as well as to the disruption or misdirection of the services they provide.
READ MORE ON WIKIPEDIASYNONYMS & ALIASES
- mail bomb
- list bomb
- email flood
- inbox flooding
- subscription bombing
- denial of service attack
USAGE NOTE
This attack is often used as a distraction to hide notifications of more critical malicious activity, such as a fraudulent financial transaction or account takeover.
DEVELOPERS
Organizations developing technology related to Email Bombing.
Provides a cloud-based email security platform that includes defenses against various threats, including denial-of-service (DoS) attacks like email bombing through traffic analysis, rate limiting, and advanced filtering.
Offers advanced email security and threat protection solutions that can identify and block volumetric attacks characteristic of email bombing, protecting mail servers and user inboxes from being overwhelmed.
Through its Cloudflare Area 1 Security service, the company provides proactive email protection that can detect and mitigate large-scale phishing and spam campaigns, which can include email bombing tactics, by analyzing traffic before it reaches the network.
Develops email security gateways and cloud-based services (Barracuda Email Protection) that provide multi-layered defense against spam, malware, and denial-of-service attacks, including mechanisms to handle sudden, high-volume email floods.
Incorporates anti-spam and anti-malware technologies into its Exchange Online Protection (EOP) and Microsoft 365 Defender services. These systems use connection filtering and advanced heuristics to detect and throttle abnormal volumes of email, mitigating email bomb attacks.
Builds sophisticated, large-scale abuse prevention systems into Gmail and Google Workspace. These systems leverage machine learning to automatically detect and block anomalous email patterns, including the massive influx of messages typical of an email bomb.
Offers Cisco Secure Email (formerly IronPort), a security gateway that provides comprehensive defense against email-based threats. It includes features to protect against volumetric attacks by analyzing sender reputation and throttling connections from malicious sources.