Feeds

Botnets punt Russian dog-barking translation spam

9 out of 10 messages are junk

SANS - Survey on application security programs

Trojan programs, particularly those designed to steal online gaming account credentials, have become the mainstay of malware authors.

According to Kaspersky Labs' Malware Evolution: 2006 Trojan code formed 90 per cent of new malicious code samples seen last year, relegating internet worms, once the mainstay of internet threats, to a fringe category. Many examples of Trojan code are designed to turn infected machines into zombie machines under the control of hackers. These networks of compromised machines (botnets) are commonly used to send spam messages. Kaspersky reckons up to 80 per cent of email traffic is junk mail (managed service security firms make a similar estimate that 77.8 per cent of emails sent during February was spam).

Spammers increasingly use graphics in order to evade spam filters or send junk mail messages masquerading as personal correspondence in order to get the recipient to read the whole message before, for example, clicking on a link to a product punted through junk mail messages.

Kaspersky found products punted through junk mail differed according to language with most Russian language spam offering education and training, and goods ranging from busts of the Russian president to a device which will 'translate' a dog’s bark. English language spam, by contrast, tends to focus on advertising for stocks and shares, penis pills and cheap (pirated) software.

The report also notes that spam became increasingly criminalised in 2006, with spammers actively using SMS to spread spam. The company’s analysts believe that technologies currently in use will continue to evolve in 2007, together with further development of graphical spam, and increased criminalization of mass mailings.

Kaspersky researchers predict that virus writers and spammers will work ever more closely together over coming months and that the number of Trojans will continue to increase. Virus writers will be on the lookout for exploitable vulnerabilities in Vista, Microsoft's new OS. Kaspersky adds that Trojans for J2ME, designed to steal funds from mobile user accounts, can be expected to emerge this year. It also reckons spammers will make more active use of text messaging to spread spam. ®

Combat fraud and increase customer satisfaction

More from The Register

next story
Parent gabfest Mumsnet hit by SSL bug: My heart bleeds, grins hacker
Natter-board tells middle-class Britain to purée its passwords
Samsung Galaxy S5 fingerprint scanner hacked in just 4 DAYS
Sammy's newbie cooked slower than iPhone, also costs more to build
Obama allows NSA to exploit 0-days: report
If the spooks say they need it, they get it
Web data BLEEDOUT: Users to feel the pain as Heartbleed bug revealed
Vendors and ISPs have work to do updating firmware - if it's possible to fix this
Snowden-inspired crypto-email service Lavaboom launches
German service pays tribute to Lavabit
One year on: diplomatic fail as Chinese APT gangs get back to work
Mandiant says past 12 months shows Beijing won't call off its hackers
Call of Duty 'fragged using OpenSSL's Heartbleed exploit'
So it begins ... or maybe not, says one analyst
NSA denies it knew about and USED Heartbleed encryption flaw for TWO YEARS
Agency forgets it exists to protect communications, not just spy on them
prev story

Whitepapers

Designing a defence for mobile apps
In this whitepaper learn the various considerations for defending mobile applications; from the mobile application architecture itself to the myriad testing technologies needed to properly assess mobile applications risk.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
Five 3D headsets to be won!
We were so impressed by the Durovis Dive headset we’ve asked the company to give some away to Reg readers.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Securing web applications made simple and scalable
In this whitepaper learn how automated security testing can provide a simple and scalable way to protect your web applications.