Woman with laptop at home with hand on head staring at laptop having just opened a spam email Woman with laptop at home with hand on head staring at laptop having just opened a spam email

You Opened An Email (With Attachment). Here’s What Happens

Oh no! You accidentally clicked on a spam message in your inbox. You closed it quickly, but now you might wonder what happens if you open a spam email. Is opening a spam email dangerous?

There is little danger to opening a spam message as long as users do not open links or attachments. Some tracking can occur if your email app or webmail automatically loads images. Downloading attached files or clicking linked text or images opens users to threats like malware, ransomware, or phishing.

We’ve all been warned to watch out for suspicious emails. Even when we have a sound spam detection system, the occasional email will make it to our inbox, even under an accidental click.

Let’s go over what happens if you open a spam email on iPhone, Android, webmail, or email client. We’ll also detail ways to protect your account.

Woman with laptop at home with hand on head staring at laptop having just opened a spam email

Before Spam Arrives In Your Inbox

Spammers gain a little insight even before their message reaches your inbox.

An email sent to an invalid address will be rejected and bounced back to the sender. Spammers know that your email account is valid by watching for bounces.

Unfortunately, there’s no great way to defend against this. Fake bounce auto-responders are ineffective.

Most users have their email addresses tightly linked to their actual inboxes. This means we cannot prevent a spammer from discovering your valid email address.

Heads up: Later, we’ll go over ways to separate your email address from your actual mailbox where you manage emails.

What happens next is scary, but there’s a straightforward solution.

Woman with laptop covering her mouth after accidentally opened a spam email

Immediately Upon Opening

Can spammers tell if you open an email?

Spammers can tell if you open an email when you or your email application interact with their message. When your webmail or mobile email app automatically downloads remote resources like photos or graphics, the spam sender immediately knows their content was viewed.

Most email users prefer auto-loading images, so emails look nice when they click to read messages. This is a mistake when it comes to defending against spammers.

How does this work:

A spammer designs an email with embedded images to make the message look professional. They host or store these photos or graphics on their server. When your email app, mail reader program, or webmail requests these images, the sender receives numerous data points while sending the email’s graphic elements.

Here’s a list of the most common bits of information revealed when you auto-load images:

  • IP Address: This is the internet address of your home router, cellular provider, or work connection that can be used to derive the following:
    • The approximate geographic location is usually down to a city level.
    • Your internet service or mobile phone provider.
    • If you’re at work, the spammer can find your company’s name.
    • The type of connection you use, like DSL, fiber optic, mobile data, etc.
  • Device type like a mobile, tablet, desktop/laptop.
  • Operating systems like Windows, Mac, Chromebook, or Linux.
  • Which browser or mail reader app you use.
  • Device time and time zone.
  • Screen size.
  • Device language.

The way to stop giving this type of metadata to spammers is to turn off automatic image downloading in your mobile email app, desktop email client, or webmail. Most services offer this function.

Remember to avoid opening suspicious emails. When in doubt, hit delete. Once you do that, you close the door to possible harm.

Later, we’ll give you quick instructions on stopping auto-loading images for popular email apps and webmail sites. But what happens next if you open a spam text?

The same rules also apply to opening suspicious texts. A  spam text message can install malware that can collect information from your phone. Once the cybercriminals have your information, it can be sold to marketers or identity thieves.

When You Reply or Forward Spam

Fun:

Comedian James Veitch gave a hilarious Ted Talk on what happens when you reply to spam.

It’s not a good idea to directly reply to spam emails despite Mr. Veitch’s sketch from above.

You confirm that you’re willing to participate in an email conversation with fraudsters in the least severe instances.

In the worst scenarios, you could inadvertently give away personal information that can compromise your online privacy or security.

When you receive an email from one of your known contacts that looks suspicious, it is best to start a new email or instant message/text your contact. Use this new, separate channel to ask if they sent an email with the suspect subject. Do not reply or attach the original spam email.

However, the worst thing you can do after opening a spam email is the most dangerous.

Man hands on head sadly looking down at laptop having clicked on attachment link after opening spam email

Can you get a virus just by opening an email?

It is not typically possible to get a virus just by opening an email. The programming behind emails is too basic, requiring attached or remote resources to load. Users must click a link or open an attachment from a malicious message to start an infection on their computer or smartphone device.

Dangerous Attachments

Some dangerous files are pretty obvious such as zip files or executables like programs or mobile apps. These should never be opened unless received from a highly trusted and confirmed sender.

Other attackers send spam-containing files whose native format includes automation. For example, PDFs can contain viruses.

The problem with sending malware as an attachment is that many email systems have sophisticated detection software that scans attachments to find viruses or other malicious files.

This works against most attackers. Spammers instead entice users to click a text or image link. Such links are called phishing links.

Links within emails are an invaluable tool for most legitimate situations.

Emails are size-restricted and do not have automatic or dynamic content updates. It’s often more efficient to send users to a web page containing the most up-to-date information.

A link can be a bit of text or a clickable image. This hides the destination, which may be an internet site operated by spammers or fraudsters.

Over the years, several very creative ways have fooled the average email user. Many of these attacks work by exploiting users’ inattentiveness to internet addresses. These often link to a phishing website or a remotely-hosted piece of malware from a site posing as a valid and well-known site.

If you’ve already clicked on a phishing link, you’ll want to know what happens next.

Here, I’ll pick on GoDaddy as an example only.

  • Purpose-Registered Domains: GoDaddyInvoicing.com
  • Typo Domains: GoDady.com
  • Look-Alike Domains: GoDаddy.com [replaced the English letter “a” (U+0061) with the Cyrillic letter “а” (U+0430)]
  • Sub-Domaining: invoice.GoDaddy.com.xfqfk3r.host
  • DNS Poisoning: Requires an attack at top-level domain lookups to replace the IP address of GoDaddy.com with an attacker’s address. This propagates across the internet for a short time.

Opened a Spam Email on Android?

Here is what to do if you open a suspicious email attachment or email:

Disconnect Your Device

Disconnect your phone from the internet. This will reduce the risk of malware collecting and sending data from your phone. It will also prevent the malware from spreading to other synchronized devices or someone from accessing your phone remotely. Or you can enable Airplane Mode.

Perform System Scan

Run a scan of your android device with reliable antivirus software. It is a protective layer that helps keep malware off. Follow all the instructions to fully search your device and quarantine or remove any virus. If you don’t already have anti-malware, you can safely install one from the Google Play Store.

Change All Passwords to Avoid Further Damage

Malware is good at collecting data such as bank account numbers, credit card numbers, usernames, and passwords. So, change all shopping accounts, online banking, social media, and email passwords. And do not use the same password for all your online accounts unless you want to make accessing your accounts a walk in the park. The smartest way to do it is to use a password manager. It allows you to store unique, passwords for your accounts safely.

Can You Get a Virus from Opening an Email in Gmail?

No, you can’t get a virus by just opening an email in Gmail or any other provider. Clicking on links and attachments is where there is a problem. Some emails have attachments and programs as links and attachments to malicious sites awash with scams and malware. Only open attachments that you trust. Even if somebody you know sends you a file with a .exe or any other similar program, don’t open it. Also, do not run any programs that try to download directly onto your computer after clicking on a link. 

That said, Gmail uses a proprietary virus scanner to scan all emails. The application blocks any email containing a virus or suspicious file. 

What if I Opened a Spam Email on my iPhone?

iPhone can’t get viruses. iOS viruses are only theoretical, not practical. If your iPhone says it has malware or a virus, it is most likely something else.

Protecting Yourself

What do you do when you open a spam email?

  1. Close email messages without clicking links or opening attachments.
  2. Mark the email as spam or junk to help train detection software.
  3. Run a malware or virus scan on your desktop or laptop computer.
  4. Watch for emails or texts from friends, family, or colleagues about strange emails.
  5. Notify a manager or IT department staff member in a work environment.

Here are a few more quick tips:

  • Be suspicious of emails from your contacts with odd subjects or the email body text is not right.
  • Use throwaway email addresses from Nada or SimpleLogin
  • Turn off auto-loading images in your email app or webmail

Turning off automatic image loading in desktop, mobile, and webmail services increases security. This results in the need to manually click a link or button in each email message to load externally hosted graphics.

This is an excellent extra step despite emails looking a little bland. It allows you to decide if you’re willing to risk your privacy and security each time.

The following are the most common email application or webmail sites and how to turn off automatic image loading.

Desktop/Laptop Email Clients

Outlook

  1. Open the Outlook application.
  2. Click on the File tab.
  3. Select the Options link on the left navigation.
  4. Select the Trusted Center option on the left in the dialog that appears.
  5. Click the Trust Center Settings button on the main panel.
  6. Select Automatic Download from the left-hand options list.
  7. Put a checkmark on the option reading: “Don’t download pictures automatically in HTML email messages or RSS items”.
  8. Add a checkmark to the option for: “Don’t download pictures in encrypted or signed HTML email messages”.

Apple Mail

  1. Open the Mail app on your Mac.
  2. Click the Mail menu option and select Preferences.
  3. Go to the Viewing tab.
  4. Remove the checkmark next to the option: “Load remote content in messages”.

Thunderbird

  1. Open the Thunderbird email client.
  2. Click the menu (hamburger) icon in the upper right.
  3. Choose the Preferences option.
  4. Click the Privacy & Security in the left-hand navigation.
  5. Find the subsection called Mail Content.
  6. Uncheck/remove the check from the option: Allow remote content in messages.

Webmail

Gmail

  1. Open a web browser to your Gmail.com account.
  2. Click the Setting gear/cog icon in the upper right.
  3. Select the See All Settings button.
  4. Find the Images section on the General tab.
  5. Change the radio button to the option: “Ask before displaying external images”.
  6. Scroll to the bottom and click the Save Changes button.

Outlook / Office 365

  1. Open a web browser to your personal or company Outlook webmail.
  2. Click the Setting gear/cog icon in the upper right.
  3. Type in the Search box the keyword: “External”.
  4. Click the External Images settings result.
  5. Find the External Images sub-section on the right pane.
  6. Change the radio toggle to the option: “Don’t use the Outlook service to load images”.

Yahoo Mail

  1. Open a web browser to your Yahoo Mail.
  2. Click the Setting gear/cog icon in the upper right.
  3. Select the More Settings link in the popup pane.
  4. Select Security and Privacy in the left pane.
  5. Click the Viewing Email option on the left navigation.
  6. Find the sub-section called: “Show images in messages”.
  7. Toggle to the radio button reading: “Ask before showing external images”.

Mobile Email Apps

Gmail

  1. Open the Gmail app.
  2. Tap the menu (hamburger) icon in the upper-left.
  3. Tap Settings then your account.
  4. Find the sub-section called: “Data usage” (Android) or “Images” (iOS).
  5. Set the option reading: “Ask before showing”.

Outlook

  1. Tap the account icon in the upper-left corner.
  2. Tap the Setting gear/cog icon in the lower left.
  3. Find and tap your Mail account.
  4. Toggle on the option: “Block external images”.

iOS Mail

  1. Go into the Settings app.
  2. Scroll down and tap the Mail setting.
  3. Find the Messages subsection.
  4. Turn off the toggle switch: “Load Remote Images”.

Final Thoughts

Merely opening a spam email doesn’t have the dangers it once did, especially if you’ve configured your email app or webmail as we’ve described.

If you’ve clicked on a message accidentally, simply close it and mark it as spam or delete it. You’re safe as long as you’ve not clicked an attachment or link within the email.

Run your computer’s malware scan if you’ve opened a spam attachment or clicked on a text or image link that opened your browser to a website.

Become more vigilant and skeptical when reading email subject lines.