Gradberry appears to be mass-spamming contributors to various github repositories. See http://pastebin.com/mmjkUY0w for one example, and https://twitter.com/jacobian/status/585287293860093952 for another.
Omniref also spammed me via either npm or github, telling me my project was on their site and that I should "claim" ownership for the documentation for it. Omniref is also a YC startup.
I found it pretty annoying because they're essentially telling me to claim 'ownership' of it and splintering where people should be getting help from. At least my library isn't that popular anyways otherwise I'd be much more angry (and more annoyed)
So I guess essentially YC is advising their companies to start spamming developers?
Hi guys, founders here, we genuinely apologize to the community for for doing this. As a lesson to other founders and startups, here is exactly how it happened:
- Through github, we selected a total of 200 devs (13-14 from each repo that correlated with an open position)- based on their commits, prior experience, etc- If they seemed like the right fit for the position, we sent them an email.
It was a dumb decision, period. And we promise to never do this sort of thing again. Recruiter spam (or any other sort of spam) sucks, and we should have known better. Lesson learnt.
Your honesty is admirable. But this delves into a much deeper question. What exactly makes you different from every other recruitment house? Companies come looking for talent and pay a fee or a percentage for the people they find. You have a database of talent which is curated based on some way of looking at github commit history. I guess I can see how that can be quite useful when trying to hire someone.
But then from this situation it looks like you aren't getting the type of talent you need to fill the positions you have. So you did what most recruitment firms do. You sent out a form letter trying to get the best talent you could find (like the Director of Security for Heroku) to sign up for your service to keep the companies that are looking for happy.
I am not trying to make you look bad or whatnot. You've already apologized. But I (and I would imagine quite a few others here on HN) use a lot of recruitment services either to be hired or to hire others. Can you talk a bit as to how you plan to be different and find or place that talent better in the future?
Spammy startups are becoming more common these days, both US based and Europe based.
What these spammy startups not know or simply ignore: spamming anyone in Europe without prior consent (e.g. opt-in for newsletter) is against the law and therefore illegal and ripe for legal action.
The recommended first step from the UK Information Commissioner's Office [1] is to ask the company to stop. The next step is the ICO asks them to stop.
The second step was very effective at ending the daily texts I was getting from a local pizza place.
This is really really gross spamming. Especially so because they are targeting potential customers/users that would be vehemently against this kind of spam in the first place. It's really extremely stupid and unethical.
Interesting to note that YC backed this company. I wonder if YC were aware of their user gathering methods (doubtful).
I hate GitHub spam. One of them told me basically "we saw you had one commit in that repo a year ago so you're obviously a core developer with that project so this is not spam because it's super relevant for you".
Gradberry is apologising on twitter now with the same bs: https://twitter.com/gradberry/with_replies ("we sent one email since your profile matched out job requirements, sorry about that!", "sorry man :( We did genuinely like your repo commits though.")
I hope this blows up in their faces. Spam is spam.
Was this prevented from hitting the front-page as well? It's top 5 in /ask, but did the people responsible for the title edit disallow it from being on the front-page such to prevent bad YC press?
If my theory is true, I will be extremely disappointed.
Hired is doing the same. I got almost 10 emails from Hired since they started spamming me.
My approach is just deleting the emails. I have some powerful Gmail filters that tag emails based on their content so every know and then I go to the tag I created for those emails and quickly review all of them (mostly based on title) and then delete all.
Is there anyone out there who actually chases down spam sources and actively stops them at the source (via anti-spam laws, abuse@ addresses, ISP/datacenter reporting, domain registrar reporting, working with ISPs about customers running botnet nodes, fixing exploitable web forms, etc)? I would pay non-trivial amounts of money per month to a company to which I could bounce spam mails and receive satisfying notes later about spam providers they've zapped out of existence.
Dos that old trick still work? I thought that (at least the big guys) quickly banned an ip address trying this. And if they don't this may be a good time to start!
On the bright side, this thing fails to actually find me at either of the domains where I regularly use e-mail. One is hosted on Exchange, the other Google Apps
Feels like spamming software that was in vogue in the 1990s.
This is exactly what I do when subscribing to public mailing lists (and I use the same email in my .gitconfig).
I have a personal domain for email, and use an alias lists@domain.com so I can easily filter emails. If it's not related to a list or service I'm subscribed to, it automatically goes to the bin.
I have the same question. Without a doubt GitHub seems to be a perfect channel for that. I'm wondering where is the spam border? Let's say I'll manually choose 100 developers who seem to be a good fit for early adopters and manually mail them something like "Hi! I'm X from Y. Here at G we are doing Z for developers like you. I'd appreciate your feedback"
I'm afraid that some of these people would still consider this spam, even if the intentions are genuine.
> I'm afraid that some of these people would still consider this spam
Because it is. It's unsolicited mass emailing
A genuine email would be "Hi, this is X from Y, we met at Z and you told me you were interested in A, I have a few startups doing work around A, B and C, would you be interested?"
To me genuine is the fact that I'm really interested in their feedback. Ingenuine act would be to buy or automatically harvest an email database and push out the same emails without checking who the recipients are and if the message really applies to them.
It simply does not matter if you mail them manually or automatically. All what matters, is that you obey the e-commerce laws of the recipient. If this requires opt-in, you need the recipients consent before you send those mails.
That's why I'm asking here becuase I'd like to understand better what I read. In the definition of spam I see unsolicited and bulk. While it's clear that any first email to a new contact is unsolicited I wonder how can I reach new contacts in a way which will be:
-legal
-not annoying to the recipients (because when I read the definitions of spam I can imagine campaigns which comply to the rules but still are colloquially considered as spam)
E.g. B2B in Europe:
"For business-to-business communication (B2B), i.e. "legal persons", EU member states are free to make opt-out the minimum legislation. However, national legislation of member states can require opt-in for B2B email communication too."
The adage "there's no such thing as bad publicity" is no longer true, if it ever was.
Sure, I've now heard of Gradberry, but my association is "those spammers who scraped GitHub for email addresses". Any email I get from them will be immediately deleted.
Frankly I'm surprised spammers aren't a bigger problem on Github, given that it's one of the few websites that makes it fairly easy to get a plaintext dump of large numbers of email addresses.
I found it pretty annoying because they're essentially telling me to claim 'ownership' of it and splintering where people should be getting help from. At least my library isn't that popular anyways otherwise I'd be much more angry (and more annoyed)
So I guess essentially YC is advising their companies to start spamming developers?