babble: Spam Doubles, Finding New Ways to Deliver Itself

FAQ | Forum Home

»	babble » right brain babble » humanities & science » Spam Doubles, Finding New Ways to Deliver Itself

Email this thread to someone!

Author

Topic: Spam Doubles, Finding New Ways to Deliver Itself

Snuckles
rabble-rouser
Babbler # 2764

posted 06 December 2006 07:07 PM

quote:
By BRAD STONE
Published: December 6, 2006
Hearing from a lot of new friends lately? You know, the ones that write “It’s me, Esmeralda,” and tip you off to an obscure stock that is “poised to explode” or a great deal on prescription drugs.
You’re not the only one. Spam is back — in e-mail in-boxes and on everyone’s minds. In the last six months, the problem has gotten measurably worse. Worldwide spam volumes have doubled from last year, according to Ironport, a spam filtering firm, and unsolicited junk mail now accounts for more than 9 of every 10 e-mail messages sent over the Internet.
Much of that flood is made up of a nettlesome new breed of junk e-mail called image spam, in which the words of the advertisement are part of a picture, often fooling traditional spam detectors that look for telltale phrases. Image spam increased fourfold from last year and now represents 25 to 45 percent of all junk e-mail, depending on the day, Ironport says.
The antispam industry is struggling to keep up with the surge. It is adding computer power and developing new techniques in an effort to avoid losing the battle with the most sophisticated spammers.

Read it here.

From: Hell | Registered: Jun 2002 | IP: Logged

jas
rabble-rouser
Babbler # 9529

posted 06 December 2006 08:36 PM

I have a hard time believing that there is any market for this kind of offensive and anti-social invasion of privacy. The sheer volume that exists right now is not needed for the kind of response they supposedly get. Some of the email moreover is just gibberish that isn't even selling anything. There is some other reason for it, and I would guess it has something to do with marketing anti-spam technology.

Just yesterday I had to clear out 2600+ messages from my secondary (which used to be my primary) email account. About 2 1/2 weeks worth of messages. That account is no longer functional for me. I can't find the real email amidst the pages of junk.

There must be a way to track it. And the spammers should be prosecuted with the full force of the law. Honestly, what are they thinking? That they're going to make lots of friends this way? If you get one of these a day, you're getting at least 15. It's like getting 15 vacuum cleaner salespeople coming to your door every day. Do they think this is a great way to sell stuff? No.

From: the world we want | Registered: Jun 2005 | IP: Logged

Michelle
Moderator
Babbler # 560

posted 06 December 2006 08:41 PM

But there is. The article was saying (on the second page, I think) that all those stock spams that you get actually work. The spammer buys a bunch of very inexpensive penny stocks, sends out a billion e-mails with the stock tip, then when the share goes up because of gullible idiots who buy the stock, they sell after they've made a good profit.

From: I've got a fever, and the only prescription is more cowbell. | Registered: May 2001 | IP: Logged

Michelle
Moderator
Babbler # 560

posted 06 December 2006 08:43 PM

P.S. I just looked at my spam folder now. I last cleared it on November 27th. I have 2182 spams in it. And that's not including the hundreds I delete when I'm accessing my rabble e-mail from remote computers (e.g. at work).

Thank god for Cloudmark. Seriously.

From: I've got a fever, and the only prescription is more cowbell. | Registered: May 2001 | IP: Logged

jas
rabble-rouser
Babbler # 9529

posted 06 December 2006 08:47 PM

It doesn't explain the gibberish email, though.

From: the world we want | Registered: Jun 2005 | IP: Logged

Michelle
Moderator
Babbler # 560

posted 06 December 2006 08:50 PM

I think the gibberish e-mails are testers. They test their lists by sending out blank e-mails to a ton of e-mail addresses to see which e-mail addresses are good. If they get a bounceback, they take that e-mail address off their list.

At least that's my theory. I'm no expert.

From: I've got a fever, and the only prescription is more cowbell. | Registered: May 2001 | IP: Logged

jas
rabble-rouser
Babbler # 9529

posted 06 December 2006 08:56 PM

I highly doubt they would care about bounce-back. Or bother taking any address off a list.

I wish there was some way to just pummel them with their own stream of sh*t. An email progrmame that bounces all the spam back to the sending computer. If it is an innocent's computer, then at least they would be alerted that it's been hijacked.

From: the world we want | Registered: Jun 2005 | IP: Logged

Michelle
Moderator
Babbler # 560

posted 06 December 2006 09:08 PM

I don't think it's because they're worried about bouncebacks. I think it's just to make sure they know how many working e-mail addresses they have, and possibly also to verify that the million e-mails they just bought from someone are actually functional. (Or, it could be an e-mail harvester who wants to be able to sell functional e-mail addresses.)

From: I've got a fever, and the only prescription is more cowbell. | Registered: May 2001 | IP: Logged

jas
rabble-rouser
Babbler # 9529

posted 06 December 2006 09:26 PM

Well maybe I'll start my own penny stock then, and when they try to cash in I'll send them my report:

There is no galactic law down here, he intoned with a voice like a
of my mother. I do this very rarely; it must be all the male-female
As his image faded I coughed to cover the grunt of suspicion that
was over-of it were ever over-I promised myself a nice long holiday.
tied to the post. No shirt.
Theres no one here but me-me-me.
that manner and assumed it was the local dialect.
expensive humanoid robots that money can afford. Which money will not
trouble. Call him.
must be the volunteer with the nom de guerre of Jim about whose

From: the world we want | Registered: Jun 2005 | IP: Logged

jrootham
rabble-rouser
Babbler # 838

posted 06 December 2006 09:55 PM

Do you have images turned on when you read email?

A lot of the gibberish text messages put the actual spam message in a graphic. It's much harder to filter graphics than text.

From: Toronto | Registered: Jun 2001 | IP: Logged

Gir Draxon
leftist-rightie and rightist-leftie
Babbler # 3804

posted 06 December 2006 11:40 PM

quote:
Originally posted by jas:
It doesn't explain the gibberish email, though.

Trojans/Viruses?

From: Arkham Asylum | Registered: Feb 2003 | IP: Logged

jas
rabble-rouser
Babbler # 9529

posted 07 December 2006 07:32 AM

quote:
Originally posted by jrootham:
Do you have images turned on when you read email?
A lot of the gibberish text messages put the actual spam message in a graphic. It's much harder to filter graphics than text.

I usually access it text-only, although I can see some of the files are larger. It's one of the few servers that still offers telnet access, so I like to keep it, even though the email is now useless for me.

From: the world we want | Registered: Jun 2005 | IP: Logged

jas
rabble-rouser
Babbler # 9529

posted 07 December 2006 07:44 AM

quote:
Originally posted by Gir Draxon:

Trojans/Viruses?

I wonder what some of these programmes can do, because for a while there, some of the keywords in these spam-mails would seem to reflect the content of my emails (using political topics or politician's names or uncommon names of people I actually knew) if not some content on my hard-drive (or eg; my posting history on Babble?). Unless it's sheer coincidence.

From: the world we want | Registered: Jun 2005 | IP: Logged

Noise
rabble-rouser
Babbler # 12603

posted 07 December 2006 09:08 AM

quote:
It doesn't explain the gibberish email, though.

Most of spam email is orginating from locations where English isn't the primary language. Hehe, you've seen some poorly translated foriegn products (I recently got an email full of them in a joke email ring... Theres an image of a bag of candy labelled "Shito Mix : Traditionally Recipe, New improved Shito!" written on it)... Some of these gibberish emails are simply exceedingly poorly translated english lacking most forms of grammar. Heh, imagine what it'd look like if you wrote up a spam email to send to everyone... In Icelandic or Romanian.

quote:
There must be a way to track it. And the spammers should be prosecuted with the full force of the law. Honestly, what are they thinking?

Full force of the law doesn't help much when the spam problem is a global issue and the spam laws enforced are by nation. Most spam does not originate from locations that have applicable laws.

quote:
If you get one of these a day, you're getting at least 15. It's like getting 15 vacuum cleaner salespeople coming to your door every day. Do they think this is a great way to sell stuff? No.

If 1 in a million are stupid enough to beleive this (which I think is underestimating human stupidity), then simple statistics will show all you need to do is send it to 1 million people.

From: Protest is Patriotism | Registered: May 2006 | IP: Logged

Howard R. Hamilton
rabble-rouser
Babbler # 12868

posted 07 December 2006 03:47 PM

Just to add some statistics to the fire:

As a small ISP, I deliver about 5500-6500 emails a day to about 650 clients. I am not sure what percentage of these are SPAM, but it is over 80%.

I also reject over 1,000,000 messages a day that are "mis-directed SPAM" that is being sent to non-existant email addresses in my domain. So that means, in actuallity, that I am receiving over 99.8% SPAM at my email server.

From: Saskatchewan | Registered: Jul 2006 | IP: Logged

Michelle
Moderator
Babbler # 560

posted 07 December 2006 03:51 PM

quote:
Originally posted by jas:
I wonder what some of these programmes can do, because for a while there, some of the keywords in these spam-mails would seem to reflect the content of my emails (using political topics or politician's names or uncommon names of people I actually knew) if not some content on my hard-drive (or eg; my posting history on Babble?). Unless it's sheer coincidence.

I know! I see exactly the same thing! I wonder if the program that collects e-mail addresses also collects a sampling of words on the web page surrounding it as well.

From: I've got a fever, and the only prescription is more cowbell. | Registered: May 2001 | IP: Logged

Stargazer
rabble-rouser
Babbler # 6061

posted 07 December 2006 04:51 PM

Ever get a spam from yourself? I have. All of our e-mail addresses are harvested just for this purpose. At work we pay someone to go through the spam every day all day looking for false positives. I think the statistic for us was that over 98 percent of our mail is spam. That is an awful lot of spam.

From: Inside every cynical person, there is a disappointed idealist. | Registered: Jun 2004 | IP: Logged

Michelle
Moderator
Babbler # 560

posted 07 December 2006 04:57 PM

Wow. Now THAT job would seriously suck.

From: I've got a fever, and the only prescription is more cowbell. | Registered: May 2001 | IP: Logged

Stargazer
rabble-rouser
Babbler # 6061

posted 07 December 2006 05:02 PM

Hell yeah. All day is spam day. On top of that you have people screaming for lost e-mails that someone supposedly sent them. Its nuts really. Despite three spam filters, nothing seems to work.

From: Inside every cynical person, there is a disappointed idealist. | Registered: Jun 2004 | IP: Logged

Frustrated Mess
rabble-rouser
Babbler # 8312

posted 07 December 2006 07:15 PM

Nothing? Let me introduce you to greylisting.

It is miracle cure if you control your own mail server. You just place a cheap linux box running postfix in front of your default mail server, add a sender_access to whitelist listserves and blacklist commercial emailers (legitimate spammers like staples, air canada, etc ... maybe you want to keep them too) and voila! Your spam is reduced 95% overnight and, and, you have protection against mail bombs to boot (greylisting denies spam at the door requiring very little processor time).

Total cost: 1 box and about 2 hours of your time. 30 mins if you have a linux box up and ready to go.

Complaints? At first, one or two. Some mail senders will complain about thier mail being bounced. Either white list them, or explain your spam controls. After about six months, no complaints and very little spam. Best of all, no lost mail and no user interaction required.

Try it! What do you have to lose?

[ 07 December 2006: Message edited by: Frustrated Mess ]

From: doom without the gloom | Registered: Feb 2005 | IP: Logged

Snuckles
rabble-rouser
Babbler # 2764

posted 12 December 2006 01:11 AM

There is FuzzyOCR, a plugin for SpamAssassin, that scans incoming email looking for image spam.

From: Hell | Registered: Jun 2002 | IP: Logged

Stargazer
rabble-rouser
Babbler # 6061

posted 12 December 2006 03:58 AM

quote:
Nothing? Let me introduce you to greylisting.
It is miracle cure if you control your own mail server. You just place a cheap linux box running postfix in front of your default mail server, add a sender_access to whitelist listserves and blacklist commercial emailers (legitimate spammers like staples, air canada, etc ... maybe you want to keep them too) and voila! Your spam is reduced 95% overnight and, and, you have protection against mail bombs to boot (greylisting denies spam at the door requiring very little processor time).

Thanks FM, but we already have such a system. My issue is not that we get a lot of spam, but that we have so much spam we have got to have a person going through it every day. Sometimes, regardless of white lists or blacklists, things get caught as false positives, and some things get caught in potential spam/content holders specifically because they are zipped files or password protected. Given the industry I work in, not having someone go through the false positives could potentially mean a lost deal worth a lot of money.

From: Inside every cynical person, there is a disappointed idealist. | Registered: Jun 2004 | IP: Logged

All times are Pacific Time

Hop To: