// THREAT DETECTION AND DATA PRIVACY TERM

Email Bombing

Email bombing is a cyberattack where a massive volume of emails are sent to a single email address to overwhelm the inbox and potentially crash the mail server. This effectively denies the user access to their legitimate emails.

Email Bombing — illustration from Wikipedia
Image via Wikipedia

TECHNICAL DEFINITION

Email bombing is a type of Denial of Service (DoS) attack that targets a victim's email address by sending a high-volume flood of messages, often using bots or scripts to subscribe the address to numerous mailing lists (list bombing). This attack vector aims to disrupt communication by overflowing the inbox, hiding legitimate security alerts, and potentially exhausting mail server resources.

BACKGROUND

Computer security is a subdiscipline within the field of information security. It focuses on protecting computer software, systems, and networks from threats that can lead to unauthorized information disclosure, theft, or damage to hardware, software, or data, as well as to the disruption or misdirection of the services they provide.

READ MORE ON WIKIPEDIA

SYNONYMS & ALIASES

  • mail bomb
  • list bomb
  • email flood
  • inbox flooding
  • subscription bombing
  • denial of service attack

USAGE NOTE

This attack is often used as a distraction to hide notifications of more critical malicious activity, such as a fraudulent financial transaction or account takeover.

DEVELOPERS

Organizations developing technology related to Email Bombing.

  • Mimecast

    Provides a cloud-based email security platform that includes defenses against various threats, including denial-of-service (DoS) attacks like email bombing through traffic analysis, rate limiting, and advanced filtering.

  • Proofpoint

    Offers advanced email security and threat protection solutions that can identify and block volumetric attacks characteristic of email bombing, protecting mail servers and user inboxes from being overwhelmed.

  • Cloudflare

    Through its Cloudflare Area 1 Security service, the company provides proactive email protection that can detect and mitigate large-scale phishing and spam campaigns, which can include email bombing tactics, by analyzing traffic before it reaches the network.

  • Barracuda Networks

    Develops email security gateways and cloud-based services (Barracuda Email Protection) that provide multi-layered defense against spam, malware, and denial-of-service attacks, including mechanisms to handle sudden, high-volume email floods.

  • Microsoft

    Incorporates anti-spam and anti-malware technologies into its Exchange Online Protection (EOP) and Microsoft 365 Defender services. These systems use connection filtering and advanced heuristics to detect and throttle abnormal volumes of email, mitigating email bomb attacks.

  • Google

    Builds sophisticated, large-scale abuse prevention systems into Gmail and Google Workspace. These systems leverage machine learning to automatically detect and block anomalous email patterns, including the massive influx of messages typical of an email bomb.

  • Cisco

    Offers Cisco Secure Email (formerly IronPort), a security gateway that provides comprehensive defense against email-based threats. It includes features to protect against volumetric attacks by analyzing sender reputation and throttling connections from malicious sources.

RELATED TERMS IN THREATS & ATTACKS