Feeds

Pitcairn Island relays most spam per person

South Sea junk mail mutiny

Choosing a cloud hosting partner with confidence

Pitcairn Island, the final South Sea island refuge of the Bounty mutineers, relays more spam per capita than any other nation. But with an estimated population of 48, perhaps it's not that surprising.

Small localities including Tokelau, The Faroe Islands, and The Falkland Islands also witnessed a disproportionate amount of junk mail activity in the final quarter of 2007, according to a chart from net security firm Sophos.

When absolute volumes of junk are considered - a more meaningful statistic to most internet users - the United States, Russia, and China top the list, accounting for one in three (33.8 per cent) junk mail messages between them. When these top three spam-relaying countries are considered in terms of population, the United States is in 64th position, Russia in 45th, and China plummets to 132nd.

The UK, ninth in terms of volume, drops to 50th worst spam relaying country on a per capita (head) count.

A separate analysis of spam trends in February 2008 by net security firm MessageLabs reveals that 4.6 per cent of all spam originates from web mail-based services.

The proportion of spam from Gmail increased two-fold from 1.3 per cent in January to 2.6 per cent in February, most of which spamvertised porno websites. Yahoo! Mail was the most abused web mail service, responsible for sending 88.7 per cent of all web mail-based spam.

The increase of web-based spam reflects rising success by ne'er-do-wells in defeating anti-spam CAPTCHAs, mechanisms designed to eliminate automated sign up tools by requiring the user to perform a task that can supposedly only be performed by a human.

After hackers developed an automated method with a 20-30 per cent success rate, they've been able to use their botnets to create unlimited numbers of accounts on compromised services for spamming and phishing. Yahoo! Mail and Hotmail CAPTCHAs were first broken in July 2007. The increase in spam from Gmail last month is indicative of similar success, MessageLabs reports.

"There are several approaches a spammer can take to defeat a CAPTCHA," said Mark Sunner, chief security analyst at MessageLabs. "Whether they do so using an algorithm, a 'mechanical turk', or combination of the two, email providers are feeling the pressure to keep pace but are limited to what a human can realistically solve creating ever more doubt surrounding the long-term effectiveness of the CAPTCHA as a security mechanism for protecting email services from abuse."

Last month also witnessed an increase in targeted Trojan attacks to approximately 30 per day, a rise of about 200 per cent since the end of 2007. These attacks focus on small numbers of targets, keeping malign activity under the radar of the wider security industry.

One particular attack last month involved up to 900 targeted Trojans, primarily directed towards senior business executives worldwide, that made use of multiple attack vectors including drive by downloads from compromised websites. These attacks are often based on prior intelligence gathered about their targets, MessageLabs notes. ®

Top 10 countries based on spam emitted per capita

  1. The Pitcairn Islands
  2. Niue
  3. Tokelau
  4. Anguilla
  5. The Faroe Islands
  6. Monaco
  7. Bermuda
  8. The Falkland Islands
  9. Andorra
  10. Aruba

Secure remote control for conventional and virtual desktops

More from The Register

next story
Regin: The super-spyware the security industry has been silent about
NSA fingered as likely source of complex malware family
Why did it take antivirus giants YEARS to drill into super-scary Regin? Symantec responds...
FYI this isn't just going to target Windows, Linux and OS X fans
Privacy bods offer GOV SPY VICTIMS a FREE SPYWARE SNIFFER
Looks for gov malware that evades most antivirus
Patch NOW! Microsoft slings emergency bug fix at Windows admins
Vulnerability promotes lusers to domain overlords ... oops
HACKERS can DELETE SURVEILLANCE DVRS remotely – report
Hikvision devices wide open to hacking, claim securobods
'Regin': The 'New Stuxnet' spook-grade SOFTWARE WEAPON described
'A degree of technical competence rarely seen'
Astro-boffins start opening universe simulation data
Got a supercomputer? Want to simulate a universe? Here you go
You stupid BRICK! PCs running Avast AV can't handle Windows fixes
Fix issued, fingers pointed, forums in flames
prev story

Whitepapers

Driving business with continuous operational intelligence
Introducing an innovative approach offered by ExtraHop for producing continuous operational intelligence.
Why CIOs should rethink endpoint data protection in the age of mobility
Assessing trends in data protection, specifically with respect to mobile devices, BYOD, and remote employees.
Getting started with customer-focused identity management
Learn why identity is a fundamental requirement to digital growth, and how without it there is no way to identify and engage customers in a meaningful way.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Simplify SSL certificate management across the enterprise
Simple steps to take control of SSL across the enterprise, and recommendations for a management platform for full visibility and single-point of control for these Certificates.