Nov. 29, 2020
11:02 a.m.
Discussion based lists tend to require subscription to post, but many support lists don't. Though I suppose the attacker would need to get subscribed to the support list to act on the confirmation message, which makes that path harder and less likely.
One solution would be to add a 'spam' filter to the 'victim' list to look to see if the message is coming from a mailing list and then either hold or reject them, maybe with a white listing before if there are any lists it is suppose to be subscribed to.