Ask HN: Mom Sent a TON of personal info to WRONG gmail account. Any options?

Actually contacting someone at Google is notoriously difficult, and unfortunately, it's intentionally difficult. At their scale, there's no way Google could provide support for all the countless billions of people using their services.

In some ways, Google is fairly bad about following standards. On normal mail servers, if you send to a non-existent address, the server will reply to let you know about your mistake. Google doesn't do this. The reason they don't has something to do with their spam handling, and the costs of spam handling, but it's still against the conventions of email to not let people know that the address they used doesn't exist.

If you are really lucky, the wrong address your Mom used does not exist, and the message she sent was never saved or seen.

The only way you could test if the account exists is to try registering the mistaken address.

Well, I've possibly lied a little bit; Google supposedly saves everything, including spam, so even if the email could not be delivered since the address doesn't exist, google may still have a copy of the message sitting somewhere.

If the mistaken address is actually real, then attempting to track down and contact its owner might be helpful. The odds of success are bad, but it can sometimes work. Call me overly optimistic, but I like to believe most people are good and would help you out.

Good Luck!

My recommendation is to relax and think about how incredibly unlikely it is that that information went to the tiny, tiny, tiny, tiny, tiny subset of humanity that can and might use it against you.

If you are really concerned you should research the recovery process for affected customers when companies are hacked and lose massive and broad sets of customer information.

You should not bombard them with scams and spam to get your mom's old email blacklisted, that is an overreaction and most likely you will just cause the other person inconvenience.

Send a few more emails from the same account with obvious scam-attempt material.

E.g. You've been selected as our daily winner. You will be rewarded a brand new Apple Phone 5!! Visit here to claim: <insert fishy URL>

Maybe they'll notice all the others from the same account and mass delete them all without opening the rest.

Take the email address and search on Facebook, LinkedIn, various blogs, etc. At the least you could be re-assured if the person looks like an upstanding citizen. And if you reach out on a trusted social network, the person might actually respond. It might also send a "I know who you are" type of message. But don't be too persistent, you're probably just freaking the person out. And if you upset this person, well they have your info.

Also, go ahead and get set up with an identity theft monitoring service. You'll know the instant a new credit line or address change is made.

Like others have said, the vast majority of people have no interest in identity theft. You realize that as a manager I have access to hundreds of applicant's passports, driver's licenses, etc.? You know how many people see your social when you apply for a mortgage? Ever considered how many average restaurant servers could steal your credit card number?

Anecdotally, I sold my car to a dealership which years later I realized had my social security card and birth certificate in an obscure compartment in the car. Probably the worst documents to lose. Nothing came of it.

I upvoted and tweeted about this just so we raise the possibility that you get a good solution to your problem.

Even if you manage to reach Google and they somehow delete that one email from that guy's inbox, how can you know that he hasn't already saved the information? So, instead of trying to solve this from the gmail side, why don't you look at the other one? Contact your bank, let them know and have your card numbers and passwords changed, start the process of getting a new passport maybe and in general "protect" yourself by making the information that guy has useless.

But I agree on the "relax" part too, I mean, how many of us would take such an email seriously? Chances are he/she thinks "Oh, those Nigerian Princes are advancing their techniques..", laughs at it and marks it as spam.

If it reaches someone, that is - and it's quite possible it doesn't.

But, yeah, my advice would be to let everyone know and eventually make all that information useless.

Good luck and let us know if something happens! :)

Did you try creating a new gmail account with that email? If you succeed, it means no one ever received those documents :)

I'd also suggest searching her sent mail to see if any previous mails have been sent to the said id.

but i agree with other comments here, and wouldnt worry 'too' much.

maybe you can send a kind mail informing of what happened, and request to delete the same.

~B

This is less dangerous than your mom losing a folder with all of that stuff in the train. Which would be worrying, but not "in a panic" worrying. As others have said, relax.

(In case this is the question you were asking: there's no reliable way to hack into any of the major e-mail providers that I know of. Getting access to another's account is highly unethical, not to mention illegal; it's unlikely to reduce the number of problems you have, especially if the risk is less "caught for being a foreign spy" and more "identity theft".)

Send an email to the erroneous email address you sent to originally. Say that you are recalling the previous email, that the email was sent in error and ask the recipient to keep the contents confidential, delete the email and any copies of the information contained in the email.

Word it nicely but firmly.

I am NOT a lawyer, ...

If I received this email, I would probably delete it immediately. I probably wouldn't reply to any follow up messages either, I'd just delete those as well.

No advice here, just letting you know what I would have done if I were the recipient.

Just relax. The chances of some random email address's owner being an identity thief is incredibly small. Not everyone is capable of abusing those documents.