Yes, the source of emails in email bombing can sometimes be traced, but it depends on the techniques used by the attacker and the tools available for investigation.
Email bombing often involves sending a massive volume of emails to a target address, which can be done through compromised accounts, botnets, or spoofed email addresses. If the attacker uses a spoofed email address (forging the "From" field), tracing the real source becomes challenging because the email appears to come from a fake or unrelated sender. However, email headers contain metadata like IP addresses, mail servers, and routing information that can help identify the origin.
For example, if an attacker uses a botnet (a network of infected computers), investigators can analyze email headers to trace the path back to the originating IP addresses. If the attacker uses their own compromised account, the email provider may log login details and device information, aiding in identification.
In cases where tracing is difficult, services like Tencent Cloud Email Security can help mitigate email bombing by filtering spam, detecting abnormal traffic patterns, and blocking malicious senders. Additionally, Tencent Cloud Anti-DDoS can protect email servers from being overwhelmed by high-volume attacks.