Outbound abuse e-mail deleted as spam

We received the usual standard spam e-mail through Sophos Email Gateway stating that after visiting a website the local machine was infected and all user activity logged and the camera used to record the user. The only way to prevent releasing compromising bla bla bla.

Normally these e-mails are send from east block domains so an attempt to communicate with the domain owner of the ip is normally useless. In this case it was received from an New Zealand domain. So I fowarded the e-mail to the abuse e-mail of the domain owner asking them to contact their customer. 

Problem is Sophos does not allow me to send that abuse e-mail as according to Sophos it is spam. FFS it was spam when we received it! It should have never been delivered in the first place but why can't we contact the abuse domain owner with that message?

Why are there no settings to control oubound spam messages?

Parents
  • Hello Fred,

    Thank you for contacting the Sophos Community.

    Probably at the time you received the score of the email might haven’t reached the score to be considered SPAM. You can open a case if you have the sample to know the score at the time it made it through.

    How are you trying to send the email as an attachment, or just forwarding it?

    Regards,


     
    Emmanuel (EmmoSophos)
    Community Support Engineer | Sophos Technical Support
    Sophos Support VideosProduct Documentation  |  @SophosSupport  | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.
  • Hi Emmanuel,

    The message was forwarded so possibly the score was changed and therefor detected. The email text however was the same standard text going around for years now. The reputation of the sender IP may also have changed. 

    Still our email setting are not applied to outgoing email therefor we cannot release it manually as legit.

    Regards,

    Fred

     

Reply
  • Hi Emmanuel,

    The message was forwarded so possibly the score was changed and therefor detected. The email text however was the same standard text going around for years now. The reputation of the sender IP may also have changed. 

    Still our email setting are not applied to outgoing email therefor we cannot release it manually as legit.

    Regards,

    Fred

     

Children