Email

Noteworthy

Email / News Briefs

Security Experts Caution Against Latest Strom Warm Campaign Claiming U.S Invasion of Iran

Recent blast of emails linked to Strom Warm attempt to exploit client-side vulnerabilities by stating that the U.S. army has invaded Iran. The email is also reported to contain links to videos. The text reads:

“Just now US Army’s Delta Force and U.S. Air Force have invaded Iran. Approximately 20000 soldiers crossed the border into Iran and broke down the Iran’s Army resistance. The video made by US soldier was received today morning. Click on the video to see first minutes of the beginning of the World War III. God save us.” more»

Antispam Group, MAAWG, Outlines Defenses Against Botnet-Induced Spam

A major antispam organization is pushing a set of new best practices for ISPs to stop increasing volumes of spam from botnets. The guidelines, from the Messaging Anti-Abuse Working Group (MAAWG), were drawn up at a meeting in Germany last week and deal with forwarded email and email that is sent from dynamic IP addresses. From MAAWG's news release issued yesterday... more»

Cyberattack Paralyzed Marshall Islands Email Service

Email communication in the Marshall Islands was paralysed Tuesday after hackers launched a "zombie" computer attack on the western Pacific nation's only Internet service provider, AFP reports. The attack started early Tuesday, in which hackers used zombie computers to flood country's only Internet service provider with spam emails, causing a complete shutdown of email traffic into the nation of around 55,000 people. more»

Anti-Spam Law Violates Free Speech Protections, Says Virginia Court Appeal

A lawyer for Jeremy Jaynes, a man once considered one of the world's most prolific email spammers, has urged the Virginia Supreme Court to strike down a state anti-spam law, arguing it violates free speech protections under the First Amendment. more»

ICANN Responds to "Worst Spam Offenders" and the Recent Knujon Report

ICANN has made an official announcement following earlier reports which suggested domain names registered by most spam sites where linked to a handful of domain registrars. From the ICANN Annoucement: "ICANN has sent enforcement notices and notices of concern to certain registrars, including those reported this week as being the registrars for the majority of websites advertised in spam emails... more»

Serious Gmail Flaw: Security Group Demonstrates Sending Unlimited Spam Using Google's Own Servers

Researchers at Information Security Research Team (INSERT) have dissevered a serious flaw in Google's Gmail service. The group demonstrates how anyone with no special Internet access privileges other than being able to connect to SMTP (TCP port 25) and HTTP (TCP port 80) servers is able to exploit a single Gmail account in order to be granted nearly unrestricted access to Google's massive whitelisted SMTP relay infrastructure. Read more from the report... more»

Significant Chunk of IP Address Space Hijacked by Notorious Mass Emailing Company

Internet address space long ago issued to San Francisco Bay Packet Radio, an organization that was involved way back in the 1970s in testing ARPANET, a predecessor to the global commercial Internet that we all use today. That organization was given the rights to do whatever it wanted with 134.17.0.0/16 address block. That entire swath of Internet space is now registered to an entity in Westminster, Colo., called SF Bay Packet Radio LLC, but except for a similar name, this company has no relation to San Francisco Bay Packet Radio... ? more»

Spam Turns 30

Thirty years ago next week, Gary Thuerk, a marketer at the now-defunct computer firm Digital Equipment Corporation, sent an email to 393 users of Arpanet, the US government-run computer network that eventually became the internet. It was the first spam email ever. That commercial message, sent on 3 May 1978, drew a swift and negative reaction. more»

15 Years Ago Joel Furr Referred to Unsolicited Bulk Messages as 'Spam'

Spam continues to blight email exactly 15 years after the term was first coined and almost 30 years since the first spam message was sent. The term is thought to have been coined by Joel Furr, an administrator on the net discussion system Usenet, to refer to unsolicited bulk messages. Mr Furr first used the term to refer to bulk postings on discussion boards on the internet but in the years to come spam became associated with email. Today, more than 90% of all email is spam, according to anti-spam body Spamhaus. more»

Email Address Typosquatting Posing Serious Leakage Threat

During the Black Hat DC 2008 security conference, security researchers urged companies and political organizations to put more effort into registering mis-typed versions of their primary domain names. In addition to protecting visitors to websites, this is also to prevent emails from accidentally leaking out... As part of an investigation, researchers from Symantec registered 124 domains consisting of common misspellings of the primary domains of candidates in the U.S. presidential election. As reported, in a strictly controlled experiment, a mail server was used to count the number of email messages sent to the misspelled domains, finding 1,121 connection attempts from 12 distinct IP addresses in a 24-hour period. more»

European Spam Networks Continue to Surpass Those in U.S.

European spam networks have pumped out more unsolicited email than those in the U.S. for the third month in a row, according to security vendor Symantec. This movement is called a "significant shift" in spam trends as, historically, compromised U.S. computers have been used to send spam, and many spammers have been U.S.-based. Security experts suspect gangs are taking advantage of the increasing European broadband market. more»

Google Blocking 1 Billion Messages a Day; Calls 2007 Spam and Virus Attacks Worst in History

With Google's recent Postini addition, it now reports to be processing email for more than 35,000 businesses and 12 million end users, and blocking around 1 billion messages per day... "We saw a peak of activity in October 2007 where volume was a 263 percent increase from September 2006 and Postini blocked 47 billion spam messages, more than 320 Terabytes of spam (now that's a lot of spam). The average unprotected email user would have received 32,000 spam messages in their in-boxes so far this year. Talk about lost productivity. In fact, Nucleus research estimates unchecked spam can cost a company up to $742 per user." more»

Study Finds 90 to 95 Percent of All Email in 2007 Spam

The study, based on an analysis of more than one billion daily email messages sent to its more than 50,000 customers worldwide, found a staggering percentage of all email sent in 2007 was spam, increasing from an estimated 85 to 90 percent of email in 2006. From the report: "This growing proportion is even more significant when compared to 2004, when the federal CAN-SPAM Act, which set parameters for sending unsolicited email and defined penalties for spammers, went into effect. At that time spam was 70 percent of all email. In 2001, spam accounted for only five percent of email messages." more»

Study Says Email Has Surpassed Telephony as Corporate Communication Tool

New research recently released by Dimension Data suggests that email usage has surpassed telephony as communication tool of choice in the workplace. The research surveyed 390 IT managers and 524 enterprise users across 13 countries in the United States, Asia Pacific and Europe, Middle East and Africa. According to the research, 100% of the end-users surveyed use e-mail, followed by fixed-line telephony (80%), mobile telephony (76%) and instant messaging (66%). more»

Patent Application Reveals Microsoft's Anti-Phish Detection Technology

A Microsoft Patent application has just been published that goes into intricate detail about anti-phishing "predictive model" technology incorporated into Outlook and Outlook Express or providable to third-party providers. The app is entitled "Finding phishing sites." The Patent literature is arguably the most thorough description of how Microsoft email software attempts to find phish email. more»