Archive for the 'News' Category
Are you new here? Welcome. You can subscribe to this blog using 
RSS 2.0 ATOM 0.3
More than one in every 400 emails sent between July and September this year was a malicious spam message. The figure for the previous 3 months, April to June, was a little over one in every 3,300 revealing a staggering sharp rise in spamware.
Malicious spam emails are a scary concept as we wrote in our Antivirus Aids Spam Fight article less than two weeks ago. This is where spam messages are laden with attachments carrying Trojans and viruses attempting to infect your computer. If they succeed (by getting past your antivirus defences and convincing you to open them) they turn your computer into a spam zombie which then sends more spam on behalf of the spammer. That’s if you’re lucky. Some malicious spam messages will infect your computer and attempt to steal your private data, including credit card and online banking details. Others will steal other personal information which can be used to forge your identity.
The reason for the steep rise in malicious spam levels is because of a recent spate of malicious spam emails. Specifically, two big malware spam attacks earlier this year, the Penguin Panic Trojan (responsible for 27% of malicious spam) and the Win32/Haxdoor Trojan (responsible for 12% of malicious spam), caused huge surges in the numbers of spamware blocked. This also represents a significant change in direction for spammers as spamware had previously almost exclusively attempted to zombify computers to use them in the propagation of spam. With the Penguin Panic Trojan attacking iPhones, evidence suggests that spammers are changing tact and looking for new platforms to exploit, including social networking communities like Facebook.
Most spam is still being produced in the USA (almost 20%), with the usual suspects of China, Brazil, Russia, India, Italy, Argentina, Italy, South Korea, Turkey and now Thailand and Columbia also sending significant amounts of spam.
Following the FTC and New Zealand government’s successful indictment of the HerbalKing spam ring on 14th October, it appears that there has been no discernible reduction in the mount of spam being filtered by leading Internet anti spam filtering services.
Anti spam filtering services and anti virus services report that their filters continue to stop the same levels of spam as before the indictment, suggesting that simply prosecuting so called spam gangs alone, is not an effective solution.It may be that the continuation of spam levels may be as a result of the tens of thousands of HerbalKing zombied computers on the Internet being configured to send their queue of spam messages regardless of whether the HerbalKing servers are running or not.
If this is the case, we may possibly see a resulting reduction in spam levels in due course as theses zombies are either patched with anti virus tools or exhaust their existing spam message queues. As we have said before, we will continue to monitor this story and post updates here.
In anti spam circles, we’re happy that backscatter is now on the mainstream agenda, having made the USA Today Money section. We are, however, more than disappointed that it has been labelled a “latest fad” and that Jon Swartz goes on to incorrectly imply that users receiving backscatter must have been infected with a spamware virus at some point in the past.
The truth is that anybody can receive backscatter because spambots often forge the senders address in messages they send. If a spambot on your computer sent a message to an address (which does not exist) and forged my address as the sender, I will receive the bounceback. Naturally, I would also be scratching my head as I struggle to recall sending a message to somebody I don’t know offering to sell them an authentic Rolex watch I don’t have. And at a mere $200!
Our spam filter service and other spam blocker services of any merit are already stopping backscatter reaching end user mailboxes. If you are experiencing problems managing your anti spam solution, or if it is not sufficiently filtering backscatter, consider a free 14 day trial of our service.
Al Iverson and Terry Zink have been writing about backscatter for years. See the Al Iverson article for an excellent definition of backscatter.
Anti spam blockers continue to filter out spam from the front-line, their objective being to prevent spam from unknown baddies getting into our inboxes. However, according to internationally respected research firm Gartner Group, 30% of the email we receive is occupational spam sent internally by our own colleagues, the rotten scoundrels! Thankfully, it seems that occupational spam can be reduced or eradicated quite easily with the right education.
Apparently we all receive several unnecessarily CC, BCC and Reply-To-All messages at work each day which significantly cuts down our productivity. These, coupled with the equally unnecessary “thanks for that” and “no problem, anytime” responses to replies, can quickly add up to several hours a month in wasted time processing them.
In his article, Email Hell for Forbes, Ross Mayfield, writes that Basex Research calculates these interruptions are costing industry up to $650 billion each year in lost productivity. They also estimate that the average corporate employee will send and receive a staggering 228 email messages per day by 2010.
Mayfield suggests that businesses can reduce this email overload by transferring some of the need for these messages to be transmitted via email very easily. Companies can post the replies to questions on their blog or use Web 2.0 interactivity to publish and distribute answers preemptively.Of course, this is not going to be suitable for every type of situation, but can encourage companies to look at new approaches to communication.
As unsolicited email spam continues to tangle with spam filters and anti spam blockers, perhaps the first thing we can all do at work, is think twice before spamming our colleagues, clients and suppliers with unnecessary messages. Ross Mayfield’s Email Hell article suggests various additional approaches businesses can take and makes interesting reading.
One of the Internets biggest spam gangs has been indicted by the US Federal Trade Commission (FTC) and the New Zealand government in an action anticipated to have far reaching implications for spammers around the world. Internet anti spam authority Spamhaus reports,
“The #1 worst spam gang on the Internet for much of 2007 and 2008, and active since at least 2005, has been indicted by the US Federal Trade Commission (FTC) in conjunction with simultaneous charges in New Zealand and possibly Australia & India”
In a preliminary action on Tuesday, the FTC succeeded in convincing a US district court to freeze the assets of the group, known collectively within the anti spam industry as HerbalKing, and order them to shut down operations immediately. It is reported that the group had sent billions of spam email messages over the past 2 years on subjects ranging from replica jewelry, to fraudulent slimming pills and penile enlargement products, just to name a few. In ordering that HerbalKing cease their operations immediately the court may have succeeded in immediately and significantly reducing the levels of spam circulating on the Internet.
This is a huge victory for the anti spam effort and for the Internet community at large. However, it is feared that HerbalKing may have invested its assets in offshore bank accounts, thus effectively cancelling out any effect of a freeze on their assets in the USA.
As this is an early phase in the civil action, penalties and/or fines will not be handed down until much further in the case but, at Remote Anti Spam, we’re hoping that the US court in Illinois takes this opportunity to make a serious statement and show a committed intent to bringing down spam rings wherever they operate.