These spoofs are produced by exploiting an SPF weakness. That weakness is allowing them to bypass conventional ways to block and be dumped as spam at the server level: they are still delivered despite attempts to block them.
The email delivery systems of many ISPs are being flooded as they continue to use that exploit on domain after domain. Spoofing off NVIDIA is stunning because of the security they must have in place to prevent it. So, why are they, whoever they are, putting so much effort into doing it? Would a sophisticated scheme like this be intended to flood server after server to the point of failure from overload? You keep thinking monetary gain and i fail to see the possibility of making money off it. Wreaking havoc, but not making money. The spam I just started getting from Yahoo have the email addresses of others in To: field. The mailing list is showing. At first I thought it was a mistake, but it keeps happening. I'm intrigued by all this.
