EmailSafety.net - Researchers warn of 'Spam Zombies from Outer Space'

Researchers warn of 'Spam Zombies from Outer Space'

Anti-Spam Software

What is Spam?

Spam Laws

Spam Facts

User Tips

Common Email Scams

What Are Visuses?

Virus Prevention Tips

Anti-Virus Software

Basic Tips

Recent News

A new wave of spam could be on the way that tricks recipients by looking like it’s a message sent from their friends' e-mail address.

This sort of spam would bypass even those filters that currently weed out 99% of the bad stuff, says John Aycock, an assistant professor of computer science at the University of Calgary.

Spammers are expected to start mining for familiar e-mail addresses via secretly overtaken "zombie" computers and replicating patterns seen in messages such as common abbreviations, misspellings and signatures. By doing so, spammers would hope to dupe recipients into going to bogus Web sites and clicking on links that could unleash damaging payloads, Aycock says.

Aycock and student Nathan Friess conducted research and wrote a paper dubbed "Spam Zombies from Outer Space" to show that generating such customized spam -- such as in the form of e-mail replies -- would not be too difficult, as has been assumed in the past. Spammers have leaned toward bulk e-mail generation that is less customized.

Spammers could adopt such a technique by mining for data on zombies, those computers that spammers and hackers take over without a user's knowledge in order to generate boatloads of spam.

In their research, Aycock and Friess used manually generated e-mail as well as addresses garnered from a public database of Enron messages.

Aycock says that these techniques have not been used by spammers in any significant way yet to his knowledge. Still, he is urging anti-spam vendors to check out his research in order to take steps to stymie spammers' newest tricks. He also is urging end users and companies to better protect themselves by taking steps such as storing and encrypting old messages and by protecting against their machines being used as zombies.

Aycock and Friess plan to present their research results at the European Institute for Computer Anti-Virus Research conference in Hamburg, Germany on April 30. Here's a pre-conference version of the paper (PDF).

For the latest on network-oriented research at university and other labs, go to Network World’s Alpha Doggs blog.

Recent News:

· The State of Spam: What to Expect in 2009
· Twitter hit with phishing scam
· Psychic predictions for tech in 2009
· Watch out for hidden cookies
· Microsoft downplays Windows Media Player bug

Site Map | Recent News | Related Sites