Feeds

Spammers adopt stealth tactics

Slow burn

5 things you didn’t know about cloud backup

Botnet controllers are switching to stealth tactics in a bid to avoid detection. Instead of mass mail-outs of spam and malicious code, they are adopting slower distribution tactics in a bid to avoid appearing on corporate security radars.

UK-based web security firm BlackSpider Technologies reports that one huge botnet, responsible for issuing 50m identical spam emails per day, compromises at least 150,000 distinct IP addresses. The use of a large number of machines - each sending out an average of 330 emails a day or around 40 per hour during the course of a working day - is a change from days of yore when a handful of compromised email servers would have been used to do the same job.

It's well known that packages such as Send-safe.com are used by spammers to control the distribution of junk mail broadband-connected PCs infected by viruses such as SoBig, but BlackSpider's figures on the mail-out rate from compromised machines add a fresh perspective to the problem.

BlackSpider Technologies CTO James Kay said this low mail-out rate means users of compromised machines will not notice anything untoward with their net connection. Because they don't notice anything amiss, the spambot remains undetected. "It’s about time law enforcement agencies took the botnet issue far more seriously. Ninety-eight per cent of spam and malicious code comes from machines with bad or unknown reputations, and we should be slapping online ASBOs (anti-social behaviour orders) on them to stop this criminal cycle," Kay said.

Kay added that spam purveyors are adopting the same stealth tactics as VXers. "It’s not dissimilar to the low-volume virus distribution tactic that we first saw last year, when hackers realised that releasing viruses in smaller numbers kept them out of sight of anti-virus vendors for far longer, causing more damage." ®

5 things you didn’t know about cloud backup

Whitepapers

Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
5 things you didn’t know about cloud backup
IT departments are embracing cloud backup, but there’s a lot you need to know before choosing a service provider. Learn all the critical things you need to know.
Why and how to choose the right cloud vendor
The benefits of cloud-based storage in your processes. Eliminate onsite, disk-based backup and archiving in favor of cloud-based data protection.
Top 8 considerations to enable and simplify mobility
In this whitepaper learn how to successfully add mobile capabilities simply and cost effectively.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?