There used to be a blog where someone registered DoNotReply.com and posted all the replies he got as a result of companies using that as a default reply-to in emails — which often included sensitive information.
It’s not around anymore but here’s a discussion of it when it was up:
It’s not around anymore but here’s a discussion of it when it was up:
https://boards.straightdope.com/t/donotreply-com/442816