A freelancer operating under an assumed identity (Rebecca Lawson) and privately registered domain name edureachmatrix.com has been observed conducting a spam campaign targeting website owners and organisations, offering for sale a large email list purportedly containing contact details of educators.
The activity involves unsolicited outreach from a mailbox associated with the domain edureachmatrix.com, which appears to be used solely as a front for outbound email activity rather than a legitimate education business.
According to multiple recipients, the sender presents themselves as an education-sector contact while attempting to sell access to a bulk email database containing thousands of records.
Individuals who have reviewed the messages describe the campaign as opportunistic and deceptive, with no evidence provided that the data was collected with consent or sourced through lawful means.
Several recipients noted that the sender appears to be acting independently as a freelancer, using an assumed name and domain registration to mask their identity while approaching potential buyers.
The email list being marketed is described as comprising global educator contacts, including name, job title, email, company, industry, and geography, with phone details where available is raising concerns about the unauthorised harvesting and distribution of professional email addresses across jurisdictions.
Privacy specialists warn that such activity commonly involves scraped or illegally obtained data and may expose both the seller and any purchaser to regulatory and legal risk.
Unsolicited attempts to sell or resell bulk email databases are widely regarded as a red flag for spam operations and are prohibited under many anti-spam and data protection frameworks, including laws governing consent, transparency, and lawful data processing.
Observers monitoring the campaign have documented email headers, domain registration details and outreach patterns as part of an ongoing assessment.
They note that the use of a single-purpose domain and assumed identity is consistent with tactics used by freelance spammers seeking to profit from illicit mailing lists while avoiding accountability.
The incident highlights ongoing challenges faced by website owners and organisations, particularly in the education and B2B sectors, who continue to be targeted by individuals attempting to monetise improperly sourced contact data through spam and list reselling schemes.
The domain used in the campaign is registered with GoDaddy. An abuse complaint has been filed with the registrar in relation to the alleged spam activity; however, at the time of publication, GoDaddy had not responded to the report.
