Update : I now believe a Russian hacker was probably responsible for the spam, most likely they are an affiliate of CPAYS. If you look at the URL in the spam mail, it appears to end with an affiliate tracking code ‘xr1stofor’, and a google search shows that a person using that ID is also posting on hacking forums, including offering some sort of casino database for sale – that doesn’t seem to be a coincidence. So most likely our email addresses are not intentionally being shared by RevenueGiants, but it seems very likely that their database has been accessed by this hacker. This may be due to poor programming on the site which could allow easy access (eg. manipulating the URL or cookies or similar ‘simple hacks’), but it may also be due to this person being a pro hacker which is much more difficult to prevent… Hopefully an investigation will reveal the extent of the problem.
Regards,
Jam