EmailSafety.net - Study: Viagra spam is profitable, but margins are tight

Study: Viagra spam is profitable, but margins are tight

Anti-Spam Software

What is Spam?

Spam Laws

Spam Facts

User Tips

Common Email Scams

What Are Visuses?

Virus Prevention Tips

Anti-Virus Software

Basic Tips

Recent News

One of the most notorious networks of hacked computers used for sending spam could be generating as much as US$3.5 million per year peddling drugs such as Viagra, according to new research.

While filters used by e-mail providers Yahoo, Google and Microsoft halt a vast amount of spam (compare Messaging Security products), messages squeak through and reach receptive buyers.

The study was carried out by infiltrating the Storm botnet, a robust peer-to-peer system that commands millions of hacked computers to send spam campaigns.

The researchers modified Storm's command-and-control system to insert their own links in spam messages that lead to Web sites they created instead of the one's spammers were advertising.

Related Content

One of the Web sites advertised pharmaceuticals, and the other mimicked an e-postcard site. E-postcard spam often leads to Web sites that try to infect PCs with malicious software that causes the machines to send Storm-related spam.

Both sites the researchers created were harmless: The drug site would return an error if someone tried to buy something, and the e-postcards site contained a benign executable. The sites reported attempted purchases and whether the executable ran.

The researchers monitored how many messages reached inboxes and whether the messages lead to a purchase or infected a PC with malware.

Over the course of the spam campaigns, some 469 million e-mails were sent. Of the 350 million pharmaceutical messages, 10,522 users visited the site, but only 28 people tried to make a purchase, a response rate of .0000081 percent.

"However, a very low conversion rate does not necessarily imply low revenue or profitability," the researchers wrote.

The average purchase price was $100. Calculating how much pharmaceutical spam Storm sends out daily, revenue could top $7,000 per day. Per year, revenue would hit $3.5 million.

"This number could be even higher if spam-advertised pharmacies experience repeat business," they wrote.

Still, sending spam is expensive. It would cost upwards of $25,000 to send 350 million messages, which is too much to likely make a profit on the conversion rate observed.

The researchers said it suggests a business model where those running the Storm botnet are also involved in running the drug Web sites.

The IDG News Service is a Network World affiliate.

Recent News:

· Feds draw a bead on Russian behind Mega-D botnet
· Ransomware Attack Resurfaces to Hold Files Hostage
· Adobe Reader X Makes PDF Files Safer
· PayPal Users Beware of Holiday Phishing Scam
· McAfee Reports Malware at All-Time High

Site Map | Recent News | Related Sites