There are spammers. There are people who sell your address to spammers. And then there is a third category: people who involuntary leak your email address to spammers.
Orbitz just joined this category. At least they are not clueless about it, they do keep their customers informed (see [url]http://bbs.spamgourmet.com/viewtopic.php?t=82
[/url]). Nevertheless, if you gave them an SG address , you might soon have to shut it off and change your Orbitz profile's email address to something new. I suggest
orbitz-com.dontleakthisone.YouUserName@sg...
Orbitz seems to have been doing their homework as far as server security goes. Maybe it was an inside job.
On the other hand, I am a bit disappointed in some well-known companies that put their customer list on an IIS server. IIS is
so easy to hack that it really drives down the prices per million stolen address. Have mercy for the poor stolen address vendors, man, get yourself a safer server!