Feeds

MCI 'makes $5m a year from spam gangs'

Spamhaus accuses telco of aiding and abetting junk mailers

  • alert
  • submit to reddit

5 things you didn’t know about cloud backup

Spamhaus has slammed MCI for hosting a website selling spamming software that is allegedly integral to the illegal trade in compromised PCs. The site - send-safe.com - sells spamware called Send Safe which uses broadband-connected PCs infected by viruses such as SoBig to distribute junk mail.

More than 70 per cent of spam comes from PCs infected with viruses or trojans, according to Spamhaus, a leading anti-spam organisation. By using compromised machines (proxies in spammer parlance) - instead of open mail relays or unscrupulous hosts - spammers can bypass basic anti-spam defences, such as IP address blacklists. Spamhaus reckons 80,000-100,000 new PCs every week are infected, leading to ever increasing volumes of spam. Spammers and their coding allies are coming up with new tricks to make the approach even more effective, with Send-Safe's developers as the forefront of this illegal activity.

The latest version of Send-Safe allows spammers to use hijacked proxies to send the spam out via the upstream ISP's main mail server, instead of from an infected machine itself. Ruslan Ibragimov, author of the 'Send-Safe'package, also sell lists of freshly-infected proxies to the spammer community, according to Spamhaus.

"MCI Worldcom not only know very well they are hosting the Send Safe spam operation, MCI's executives know send-safe.com uses the MCI network to sell and distribute the illegal Send Safe proxy hijacking bulk mailer, yet MCI has been providing service to send-safe.com for more than a year," writes Spamhaus director Steve Linford.

Timothy Vogel, who heads MCI's legal team for technology issues, told the Washington Post that MCI is only the wholesale provider of the web space used by Send Safe. He told the paper that MCI would take action if it had evidence that the Send-Safe company was spamming which "would violate MCI policy". But merely advertising its product is a form of speech that should not be censored, he said.

Linford said Vogel's interpretation of the law is incorrect. "While commercial speech is given qualified protection under the first amendment, advertising the sale of software designed for the prime purpose of allowing the end-user to engage in illegal activities is not protected under the first amendment," he said

"MCI have flatly refused to stop send-safe.com and other proxy spam gangs, which has allowed Send Safe to become one of the most sold anonymous proxy hijacking bulk mailers on the spam scene, and has had ever more spammers flocking to MCI," Linford added.

Spamhaus accuses MCI of being on the wrong side of the fight against junk mail not just by hosting send-safe.com but becoming a safe haven for spammers in general. MCI ISP tops Spamhaus's chart of 'Top 10 World Worst Spam Service ISPs'. It estimates MCI "earns upwards of $5m a year" from selling service knowingly to known spam gangs. ®

Related stories

US tops junk mail Dirty Dozen - again
VXers creating 150 zombie programs a week
Earthlink wins cash from spammers
Spam fighters infiltrate spam clubs
UUNet tops spammer-hosting super league

Secure remote control for conventional and virtual desktops

More from The Register

next story
Ice cream headache as black hat hacks sack Dairy Queen
I scream, you scream, we all scream 'DATA BREACH'!
Goog says patch⁵⁰ your Chrome
64-bit browser loads cat vids FIFTEEN PERCENT faster!
NIST to sysadmins: clean up your SSH mess
Too many keys, too badly managed
JLaw, Kate Upton exposed in celeb nude pics hack
100 women victimised as Apple iCloud accounts reportedly popped
Scratched PC-dispatch patch patched, hatched in batch rematch
Windows security update fixed after triggering blue screens (and screams) of death
Researchers camouflage haxxor traps with fake application traffic
Honeypots sweetened to resemble actual workloads, complete with 'secure' logins
Attack flogged through shiny-clicky social media buttons
66,000 users popped by malicious Flash fudging add-on
New Snowden leak: How NSA shared 850-billion-plus metadata records
'Federated search' spaffed info all over Five Eyes chums
Three quarters of South Korea popped in online gaming raids
Records used to plunder game items, sold off to low lifes
Oz fed police in PDF redaction SNAFU
Give us your metadata, we'll publish your data
prev story

Whitepapers

Endpoint data privacy in the cloud is easier than you think
Innovations in encryption and storage resolve issues of data privacy and key requirements for companies to look for in a solution.
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Advanced data protection for your virtualized environments
Find a natural fit for optimizing protection for the often resource-constrained data protection process found in virtual environments.
Boost IT visibility and business value
How building a great service catalog relieves pressure points and demonstrates the value of IT service management.
Next gen security for virtualised datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.