Is your email inbox suddenly a little leaner? Less Viagra and Penny Stock emails getting through? It's all a great sign for the war against spam but experts are worried that, since criminals go where the action is, they are just up to new tricks.
On Christmas Day, the Rustock Botnet, which seems to have replaced Mega-D for generating high volumes of spam, they are known for fake drug ads, was quiet. Maybe cybercriminals do take days off? Highly unlikely. Rustock Botnet potentially owns 1.7 million computers and uses those to generate and send more spam.
Rustock cranked back up again after the New Year but not at the same volumes.
What targets can you expect for this year?
1. Shortened links: hiding behind those shortened links so popular in social networking sites.
2. Smishing: text messages on your cell phone that look legitimate but the link is not
3. Click through Ad fraud: You click on an add for a legitimate product or company that has been hijacked or counterfeited
4. Poisoned Searches: Creating web sites that generate traffic so they hit the top of your search engine results and lead you to click on a link that is hiding malicious software
WHAT YOU CAN DO TO PROTECT YOURSELF:
Instead of clicking on the link, type the headline into your favorite search engine and connect via the original web site through the search engine link provided.
Use a tool like Norton's safe web tool or ExpandMyURL. You can type in the link and get a report on the reputation of the site or the link. Go to: http://safeweb.norton.com/ or http://www.expandmyurl.com/
Sources:
"Experts fear cyberspammers are plotting new attack modes", Byron Acohido, USA Today, January 11, 2011.
Previous blog post, "Have Cybercreeps Gone Vegetarian on Us?" and sources from January 5, 2011.
WBTV Protecting Your Cyberturf Segment, "The New Hiding Spot for Spam", January 13, 2011.
Online safety. Online security. Protecting Yourself Online. Protecting Kids Online. Keeping the U.S. Safe from Cybercreeps. Cybercrime. Protecting Against Fraud.
Showing posts with label spam. Show all posts
Showing posts with label spam. Show all posts
Friday, January 14, 2011
Wednesday, January 5, 2011
Have cybercreeps gone vegetarian on us? The sudden drop in spam!
According to analysis provided by John E. Dunn in an article published by TechWorld, spam volumes appear to have peaked in the late summer of 2010 and then began falling. Eric Park, in a post on Symantec's site reported the same analysis.
For example, M86 Security found that their spam measures dropped dramatically in late 2010, even with the typical high-volume period around year end and holidays.
Of course, Mega-D was caught and that outfit was a big spewer of spam. That outfit was taken offline long enough ago that security experts do not think this can account for the drop.
So, have the cybercreeps gone good or given up "spam" for a more vegetarian diet? The security community does not think so. It is very likely that cybercreeps have turned their evil talents towards targeting you via social networking and mobile phones.
Case in point, Websense reported that Facebook and Twitter had an uptick in spam posts.
What can you do if your friend or colleague has a very interesting post but you are worried about clicking on the link? One option is to go to Norton's Safe Web and type in the URL or shortened link to test it first. It's an extra step but might be worth it if the spam via email continues to drop but spam via your smart phone messages, Twitter, Facebook and other social networking sites rises!
Sources:
"Spam and Phishing Landscape: December 2010", Eric Park, Symantec, December 16, 2010.
"Sudden Spam Drop Leaves Experts Baffled", John E Dunn, TechWorld, January 4, 2011.
For example, M86 Security found that their spam measures dropped dramatically in late 2010, even with the typical high-volume period around year end and holidays.
Of course, Mega-D was caught and that outfit was a big spewer of spam. That outfit was taken offline long enough ago that security experts do not think this can account for the drop.
So, have the cybercreeps gone good or given up "spam" for a more vegetarian diet? The security community does not think so. It is very likely that cybercreeps have turned their evil talents towards targeting you via social networking and mobile phones.
Case in point, Websense reported that Facebook and Twitter had an uptick in spam posts.
What can you do if your friend or colleague has a very interesting post but you are worried about clicking on the link? One option is to go to Norton's Safe Web and type in the URL or shortened link to test it first. It's an extra step but might be worth it if the spam via email continues to drop but spam via your smart phone messages, Twitter, Facebook and other social networking sites rises!
Sources:
"Spam and Phishing Landscape: December 2010", Eric Park, Symantec, December 16, 2010.
"Sudden Spam Drop Leaves Experts Baffled", John E Dunn, TechWorld, January 4, 2011.
Friday, December 3, 2010
Mega-D, We're not talking vitamins here, we're talking spam
The U.S. Charges a Russian Man With Spamming
Oleg Y. Nikolaenko, a 23 year old man from Russia, has been charged with violating an international spam law. Internet security experts estimate that, on some days, his spamming software was responsible for 1/3 of all spam mail. They believe he is linked to the "Mega-D" which is considered a major global spam producer. It is estimated that 500,000 or more computers are infected with Mega-D and are sending spam mails around the globe.
How they caught him:
An undercover FBI agent ordered Viagra through an email sent by Nikolaenko's operation. When the agent received bogus herbal pills, the cyber squad from the FBI was pulled in to investigate internet fraud.
Their initial tip came from catching a man who was conspiring to sell counterfeit Rolex watches.
Of course, other spammers just want to fill the void left behind by the arrest of Nikolaenko.
Sources: "Russian accused of mass-spamming charged in US', Dinesh Ramde, AP, December 1, 2010.
Oleg Y. Nikolaenko, a 23 year old man from Russia, has been charged with violating an international spam law. Internet security experts estimate that, on some days, his spamming software was responsible for 1/3 of all spam mail. They believe he is linked to the "Mega-D" which is considered a major global spam producer. It is estimated that 500,000 or more computers are infected with Mega-D and are sending spam mails around the globe.
How they caught him:
An undercover FBI agent ordered Viagra through an email sent by Nikolaenko's operation. When the agent received bogus herbal pills, the cyber squad from the FBI was pulled in to investigate internet fraud.
Their initial tip came from catching a man who was conspiring to sell counterfeit Rolex watches.
Of course, other spammers just want to fill the void left behind by the arrest of Nikolaenko.
Sources: "Russian accused of mass-spamming charged in US', Dinesh Ramde, AP, December 1, 2010.
Wednesday, November 24, 2010
New Facebook Spam Campaign Brought to You by Asprox
Facebook friends and fans beware! A new Facebook Spam Campaign is on the loose.
The spam is spawning from a spambot named Asprox. This is the gang behind a lot of the bogus emails purportedly sent to victims from DHL, FedEx, UPS, USPS spam.
If you get a pop up screen from "Facebook Support" it looks legitimate and the message makes you think that Facebook is really on the ball protecting you.
Facebook Service is notifying you that since spam was sent from your account, they changed your password for your "safety" and they ask you to open the zip file attachment for more information.
Here's your red flag - Facebook will not send you a note asking you to download a zip file for more information.
If you do download the file it has the Sasfis trojan in it which connects to domain name pupmypzed.ru.
Source:
M86 Security Labs Blog - research and the screen shot
The spam is spawning from a spambot named Asprox. This is the gang behind a lot of the bogus emails purportedly sent to victims from DHL, FedEx, UPS, USPS spam.
If you get a pop up screen from "Facebook Support" it looks legitimate and the message makes you think that Facebook is really on the ball protecting you.
Facebook Service is notifying you that since spam was sent from your account, they changed your password for your "safety" and they ask you to open the zip file attachment for more information.
Here's your red flag - Facebook will not send you a note asking you to download a zip file for more information.
If you do download the file it has the Sasfis trojan in it which connects to domain name pupmypzed.ru.
Source:
M86 Security Labs Blog - research and the screen shot
Friday, October 22, 2010
U.S. is ranked #1 - In Botnet Computer Infections!
Microsoft released its 9th Security Intelligence report focused on computer infections and botnets.
In 3 months alone, Microsoft doubled an important and staggering number. Yes, from April-June 2010, Microsoft cleaned 6.5 million computers from a botnet computer infection.
What is a botnet? Basically, you think your computer is in your command because it appears to be. However, behind the scenes it is a zombie under the control of cybercriminals. They can use your computer to hide behind to do their evil bidding - spamming others, infecting others, attacking systems.
What can you do?
1. Pay attention to your computer - is it suddenly slow? Do you hear it accessing the hard drive but you are not running anything?
2. Are your browsers, antivirus, and software up to date?
3. Practice safe surfing - don't click on links or open attachments without thinking twice about it
In 3 months alone, Microsoft doubled an important and staggering number. Yes, from April-June 2010, Microsoft cleaned 6.5 million computers from a botnet computer infection.
What is a botnet? Basically, you think your computer is in your command because it appears to be. However, behind the scenes it is a zombie under the control of cybercriminals. They can use your computer to hide behind to do their evil bidding - spamming others, infecting others, attacking systems.
What can you do?
1. Pay attention to your computer - is it suddenly slow? Do you hear it accessing the hard drive but you are not running anything?
2. Are your browsers, antivirus, and software up to date?
3. Practice safe surfing - don't click on links or open attachments without thinking twice about it
Facebook gets tough on email scams
In a positive move, Facebook filed lawsuits this week against the scammers hitting it's site and it's users.
The three lawsuits filed name people and a company and accuse them of tricking Facebook users into visiting internet marketing websites.
In one of the scams, they created fake "dislike" buttons that then hijacked the user's account and sometimes their money.
There was a fake "Facebook Gold Account" offering slick features but really just took their data and sold it.
A reminder to us all that when something seems to good to be true, it probably is!
Sources:
"Facebook sues over free gift card, 'dislike' button scams", Robert McMillan, MacWorld, October 21, 2010.
The three lawsuits filed name people and a company and accuse them of tricking Facebook users into visiting internet marketing websites.
In one of the scams, they created fake "dislike" buttons that then hijacked the user's account and sometimes their money.
There was a fake "Facebook Gold Account" offering slick features but really just took their data and sold it.
A reminder to us all that when something seems to good to be true, it probably is!
Sources:
"Facebook sues over free gift card, 'dislike' button scams", Robert McMillan, MacWorld, October 21, 2010.
Subscribe to:
Posts (Atom)