Hackers spread malware with ‘Hilary Clinton’ spam

Posted on February 17, 2008 
Filed Under Newsbreak, Spamcatch Featured | 1 Comment

Cybercriminals may have weighed risk and reward and figured that the first isn’t worth the second if they try to exploit the 2008 U.S. presidential campaign, a security researcher at Symantec Corp. said today.
At least for now.
“We’ve now seen just two instances of spam using political candidates to spread malicious code,” said Oliver Friedrichs, director of Symantec’s security response team and a writer on electoral cybercrime. “I think [hackers] are still a little skittish. The high visibility of the federal elections makes them cautious about stepping into it.”

Earlier this week, researchers at both Symantec and McAfee Inc. reported a spam run that tried to trick users into downloading a Trojan horse posing as a video of Sen. Hillary Rodham Clinton (D-N.Y.) supposedly shot before Tuesday’s Virginia primary. “Hilary [sic] Clinton visited her campaign headquarters in Virginia and did satellite interviews, looking beyond Tuesday’s trio of contests and touting the importance of a March 4 vote in Ohio,” the bogus e-mail read. “Full video. Download it now!”

Users who clicked the embedded link, however, were faced with a file pegged “mpg.exe.” That file was actually a downloader, which in turn retrieved and installed the “Srizbi” Trojan horse — malware that turns Windows-running PCs into spam-spewing bots.

The other example of what Friedrichs has called “electoral cybercrime” was a late-October 2007 spam blast ostensibly promoting Rep. Ron Paul (R-Texas) and his campaign for the Republican Party nomination. More than a month after that attack, which had links to the Srizbi Trojan horse like the Clinton one this week, researchers at SecureWorks Inc. linked the spam to a Ukrainian botnet. Read Complete article here.

No Spam Rules and Email Marketing Strategy

Posted on February 16, 2008 
Filed Under Block spam | 1 Comment

No spam rules are very stringent and are of two types. Many countries actually have laws against spamming, or sending out of unsolicited emails. These laws can be very strict and have severe penalties and need to be checked in each country where you will do business on an individual basis.

The EU, or European Union has implemented Article 13 of their Directive on Privacy and Electronic Communications which says people must give prior consent, or opt in. The media calls this in Europe of the “Opt In Directive”. It does however have several exemptions allowed. In the United Kingdom the Data Management Association has adopted strict rules requiring opt in. The US Congress is considering legislation along those lines.

In Canada an Ontario Superior Court of Justice made history in the battle against spam through claiming that it was a breach of netiquette, or net etiquette. This case occurred when a serial spammer sued a Toronto company for breach of contract. The company, an ISP, terminated the plaintiff account because the spammer sent out 200,000 junk emails per day. The judge ruled in favor of the ISP and against the spammer.

However, most no spam rules concerning email marketing are rules of etiquette equivalent to the morays of society discussed in sociology classes. Sending unsolicited email is considered a taboo in the Internet community. It is not just rude and socially unacceptable behavior, but it is considered a violation of the strict moral codes that govern email marketing.

Legitimate email marketers who earn their livelihood from email marketing will never ever send out spam. Sending out spam is the mark of an amateur, and a charlatan. Sending out spam will get a person blackballed in the email marketing community. People will refuse to do business with a company that sends out spam. Their Internet Service Providers will often drop them from the servers and refuse to allow their email to pass. They may even take down their websites.

As far as handling spam is concerned, there are several things to keep in mind. First, all unsolicited junk mail or bulk mail should be considered spam. Also, if it makes an offer that seems too good to be true, then it is spam. Remember to be suspicious of all spam and never give them personal or financial information.

Never reply to spammers because that tells them that you exist and you will continue to receive spam from them. Also never “opt out” of spammers. Reputable companies allow you to opt out of mailing lists, but spammers are not reputable people or they would not be spamming. Read full article here.

Antispam Solutions for Business

Posted on January 25, 2008 
Filed Under Anti spam software | Leave a Comment

Historically, spam filtering has occurred at ISPs, on enterprise gateways (e.g., a DMZ server), on mail servers, and on desktops. These strategies, especially when they’re combined to create a multilayered solution, have been effective in reducing the amount of spam users receive in their mailboxes. But increases in spam create slower mail server processing rates as well as require additional storage for messages flagged as potential spam. That’s why many organizations are looking to replace their first-generation spam software solutions either with a spam-filtering appliance or by entrusting spam-filtering tasks to a hosted service. This Buyer’s Guide will help you evaluate spam-filtering appliances and hosted services so you can choose the technologies that provide the best email protection for your organization. Read more here.

Webroot Offering Cloud-Based E-mail Scanning

Posted on January 16, 2008 
Filed Under Newsbreak | Leave a Comment

Webroot, a company that made its fortune in the client-side spyware detection market, announced its entry into the software-as-a-service (SaaS) market with Webroot E-Mail Security SaaS, an e-mail security service for consumers and SMBs.

This product is the result of Webroot’s November 2007 merger with Email Systems, a SaaS security provider in the United Kingdom. The e-mail scanning works through both cloud-based scanning and by Webroot’s AntiSpyware Corporate Edition with AntiVirus end-point software. Between the two products, the security service uses up to five different antivirus and two different spam filtering engines. Read more

Rules to protect from spam

Posted on October 8, 2007 
Filed Under Anti spam software, Block spam, Spam filter | Leave a Comment

Here are a couple of tips to help you fight and protect yourself from spam.
Do what you can to avoid having your email address out on the net.
There are products called “spam spiders or email harvesters” that search the Internet for email addresses to send email to. If you are interested, do a search on “spam spider” and you will be amazed at what you get back. Interestingly, there is a site, WebPoison.org, which is an open source project geared to fight Internet “spam bots” and “spam spiders”, by giving them bogus HTML web pages, which contain bogus email addresses. Refrain from putting your important personal or business email addresses in forums, newsletters, blogs, comments etc. Eventually, it’ll be caught up by a harvester or a spammer looking for email addresses.

Use form emails, which can hide addresses. There are also programs that encode your email, like jsGuard, which encodes your email address on web pages so that while spam spiders find it difficult or impossible to read your email address. If you own a website or a blog, make sure you encrypt your email address before putting it on the web. A little javascript code can help you in that and there are a lot of free programs available on the internet that will do it without going into coding. You can learn more about hiding your email address here - http://javascript.about.com/library/blemail1.htm and there is a simple javascipt/html encoder also available.

Get spam blocking software. No wonder this is one of the best ways to stop spam. There are many programs out there for this. (go to www.cloudmark.com or www.mailwasher.net for example). You may also buy a professional version. Whatever you do, get the software. It will save you time. The software is not foolproof, but they really do help. You usually have to do some manual set up to block certain types of email. Two noteworthy programs are: SpamFighter Pro and SpamWasher.

Use the multiple email address approach.
There are a lot of free email addresses to be had. If you must subscribe to newsletters, then have a “back-up” email address. It would be like giving your cell phone number to your best friends and the business number to everyone else. Make disposable addresses for different purposes. For instance, use disposable email addresses in web forms or for newsletter subscriptions or comments postings. There are many email services that let you do so, like Yahoo Mail, Emailias, Spamex. If you find one of the aliases getting a lot of spam, just turn it off or delete it and start using new one.

One interesting service that I have found is Temporary Inbox. They provide you with a temporary disposable address which you can use to one-time temporarily subscription to newsletters etc. Here are the benefits:-

• The mails are deleted automatically after 6 hours
• You can delete the mails manually as well
• You don’t have to register the account first to use it
• This service is faster than all other similar services

They even have a temporary forwarding facility available where in you can have all the temporary emails forwarded to a different account of yours. You can create an email address@temporaryforwarding.com, which forwards all mails to your private email account. You can use this forwarding email address to register at websites/boards/lotteries and so on.
Remember attachments from people you don’t know are BAD, BAD, BAD.
A common problem with spam is that they have attachments and attachments can have viruses. Corporations often have filters that don’t let such things pass to you. Personal email is far more “open country” for spamers. General rule of thumb: if you do not know who is sending you something, DO NOT OPEN THE ATTACHMENT. Secondly, look for services that offer filtering. Firewall vendors offer this type of service as well.
Email services now have “bulk-mail” baskets. If what you use currently does not support this, think about moving to a new vender. The concept is simple. If you know someone, they can send you emails. If you don’t know them, put them in the bulk email pile and then “choose” to allow them into your circle. Spam Blocking software has this concept as well, but having extra layers seems critical these days, so it is worth looking into.

Never click on images or pay heed to unsubscribe requests in spam mails
Usually when you make any unsubscribe attempt to stop receiving spam from inside a spam mail, it just confirms to the sender that yours is an active email address. This will result in receiving more spam than before. The same goes for images inside junk mail, they are usually linked or contain webbugs. Spammers use web bugs to find out which of their bulk messages have been read, therefore revealing if the email address is being used (active). The Register reports that “83 per cent of unsolicited commercial HTML emails sent to these accounts contained hidden tracking codes that notified the spammers as soon the messages were opened. Opening such messages (even in the Outloook/Outlook Express preview pane) results in yet more junk, natch, thanks to information gleaned through the hidden tracking codes.” Active email addresses are even sold to other spammers.

Blocking and Filtering Spam with Cloudmark Desktop

Posted on October 7, 2007 
Filed Under Block spam, Spam filter | Leave a Comment

Spam. Nobody likes it. Nobody wants it. No, we aren’t talking about the canned meat, but those unsolicited, unwanted, irrelevant, or even inappropriate messages that hit our email in mass quantities. While most mailboxes have some type of spam filtering software built into their system, they never seem to do a very good job of catching what you want them to catch, and letting through what you want them to let through. Therefore, it becomes increasingly important to turn to some type of additional spam filtering product. One such filtering system, designed for Outlook and Outlook Express users, is receiving rave reviews for its superior detection and low rate of false positives (i.e,. what you want to get through does).

Cloudmark Desktop, formerly known as SpamNet and SafetyBar, uses a unique community-based filtering process. This community-based filtering system relies on users to report any new spam. Within minutes of a spammer being reported, they are placed on a blacklist. At that point, no other member will receive that particular spam. Cloudmark also applies the same basic process to phishing email scams. Here are some of the features of Cloudmark Desktop:-

• Easy toolbar based installation that starts blocking spam, fishing scams and even email-borne viruses
• Fast and lightweight. Does not hog on resources
• Effective, accurate with high spam blocking rate

What is interesting is how Cloudmark creates a digital reputation model of reporting spam. Each user starts with a neutral reputation. A user’s reputation will rise if they are among the first to identify undesirable content. On the flip side of the coin, a user’s reputation falls when they falsely reports spam. The result is a system that is automated, highly scalable and resistant to tampering.

An added bonus is that because the software doesn’t depend upon the user to configure its settings, it installs in minutes and is easy to use. Cloudmark blocks over 98% of spam from reaching your inbox and boasts over one million users worldwide.

The cost of program is $39.95 for a one-year subscription. The subscription is renewable annually. For those wanting to test drive the product, a free 15-day trial period for either your Outlook or Outlook Express is available.

Download for Outlook
Download for Outlook express

Get rid of spam

Posted on September 1, 2007 
Filed Under Spamcatch Featured | Leave a Comment

Get rid of spam. You would ask, How? Well, we will show you how. Just keep a watch on this blog and soon you will have a clutter and junk free inbox. There are a number of good antispam tools and programs, some free, the premium ones paid version. I will review these soon one by one, just pick the best one suited for your needs and forget about annoying spam. Your comments and suggestions are welcome. Get prepared for a no-spam experience and it is coming soon!

• Search

• Recently Written

  • Hackers spread malware with ‘Hilary Clinton’ spam
  • No Spam Rules and Email Marketing Strategy
  • Antispam Solutions for Business
  • Webroot Offering Cloud-Based E-mail Scanning
  • Rules to protect from spam
  • Blocking and Filtering Spam with Cloudmark Desktop
  • Get rid of spam

• Categories

  • Anti spam software
  • Block spam
  • Newsbreak
  • Spam filter
  • Spamcatch Featured

• Archives

  • February 2008
  • January 2008
  • October 2007
  • September 2007

• Blogroll

  • Free Computer Security - amazing pc security easily!
  • PC Security
  • PC Security Information

• Admin

  • Register
  • Login

Tags:

antiphishing antispam antispam solution antispam technologies best email protection bulk mailers cloudmark desktop cloudmark for outlook express combating business spam data encryption disposable email addresses electoral cybercrime email bugs email marketing email scanning hilary clinton junk mail legitimate emailing protect from spam rules spam blocker spam blocking software spam bots spamfighter pro spam filter spam filter for outlook spam filtering spam malware spam protect spam rules spamwasher temporary forwarding temporary inbox webroot