Here's why .pdf spam went pffft

It’s no secret that spammers have informal communications channels and freely share tricks of the trade on the Internet. But what happened in August is enough to make you suspect they have an organized trade union — or even a government — that allows what would otherwise be a scattered collection of freelance vermin to operate in surprising unison.

Other stories on this topic
E-cards: I delete them all unopened ... You? 8/20/2007
Spam up in August, despite PDF type's short life 9/6/2007
The Monster.com mess 8/28/2007
Powered by Inform
RSS feed

We're talking about the meteoric rise and fall of .pdf spam.

New! Watch this Network World Webcast - Security Information Management Solutions: Beyond Threat Management

According to a monthly report from Symantec that landed here last week, .pdf spam was accounting for 20% of all junk e-mail in early August but by month's end had dissipated to less than 1%. Other spam watchers reported similar plummets.

Maybe there's some kind of SpamWorld newsletter that provides monthly marching orders and the word went forth on .pdf to cut it the heck out. Unlikely, yes.

So I asked Symantec's public relations department to ask one of the company's experts to explain what might account for such a sudden abandonment of what had become a suddenly popular tactic. Here's what I got back from Doug Bowers, Symantec's senior director of anti-abuse engineering:

"PDF spam burst onto the scene in Mid-June because spammers thought they could use it to get their message through (primarily stock pump-and-dump scams) and make a buck.

"It's dropped off quickly for one of two reasons: 1) Spammers are recalibrating their attacks and will relaunch after making adjustments; 2) spammers have become convinced that antispam systems are blocking this type of attack effectively enough that their time is better spent on alternative approaches. This could be cooking up a new type of attachment-based spam — using MS Word, Flash video, etc. — or coming up with a new approach entirely.

"My expectation is that we haven't seen the last of this type of attack just yet."

Makes sense. But I still like my newsletter theory.

Feds kill never-used, $42M data-mining project

Have any of you pulled the plug on any $42 million, never-operational IT projects recently? … Didn't think so.   

1 | 2 |  Next >
Recent News:
· McColo takedown: Vigilantism or Neighborhood Watch?
· Spam drop could boost Trojan attacks
· Hosting firm shutdown forces botnets to relocate
· ISP cut off from Internet after security concerns
· Spam plummets after hosting service shuttered
Site Map | Recent News | Related Sites

Copyright © 2006 EmailSafety.net - All Rights Reserved.