Feeds

Spam levels bounce back after botnet takedown

Even botnets have backup now

The Power of One eBook: Top reasons to choose HP BladeSystem

Spam levels are returning to normal following the recent takedown of crime-friendly ISP 3FN, which temporarily interrupted the operation of a significant spam spewing botnet.

Junk mail volumes dropped 30 per cent after the Federal Trade Commission forced the closure of 3FN in early June, according to Google. Google's latest quarterly spam trends report records a 14 per cent rise in junk mail volumes from the 3FN takedown low by the end of June.

Stats from Postini, the online spam and virus filtering service acquired by Google, reveal that average spam levels in the second quarter of 2009 were 53 per cent higher than in the first quarter and six per cent higher than in the same period of 2008.

The latest figures from security services firm MessageLabs, which is now a part of Symantec, tell a slightly different story. It reckons that the Cutwail botnet experienced a short period of downtime following the shutdown of California-based 3FN ISP (AKA Pricewert LLC and APS Telecom) on 5 June.

However, for the month of June as a whole, spam level were unchanged at around 90.4 per cent of overall mail volumes, after MessageLabs' first level filters threw out email from known bad sources.

Cutwail, one of the largest and most active botnets, was quickly back blitzing email inboxes with useless junk, in sharp contrast to the disruption to the spam economy created by a similar takedown last year, MessagLabs reports.

"Cutwail’s recovery to one-third of its original levels, after only a few hours, highlights the progress spammers have made since the McColo shutdown in November," said Paul Wood, MessageLabs Intelligence senior analyst at Symantec. "Spammers have learned the importance of having a backup for command and control channels."

MessageLabs reports that spam from botnets accounted for the vast majority (83.2 per cent) of all junk mail in June, with the remainder spewing out from compromised mail servers and webmail accounts. Image spam accounted for eight to ten per cent of all junk mail last month, it adds. ®

Designing a Defense for Mobile Applications

More from The Register

next story
Secure microkernel that uses maths to be 'bug free' goes open source
Hacker-repelling, drone-protecting code will soon be yours to tweak as you see fit
How long is too long to wait for a security fix?
Synology finally patches OpenSSL bugs in Trevor's NAS
Roll out the welcome mat to hackers and crackers
Security chap pens guide to bug bounty programs that won't fail like Yahoo!'s
HIDDEN packet sniffer spy tech in MILLIONS of iPhones, iPads – expert
Don't panic though – Apple's backdoor is not wide open to all, guru tells us
Researcher sat on critical IE bugs for THREE YEARS
VUPEN waited for Pwn2Own cash while IE's sandbox leaked
Four fake Google haxbots hit YOUR WEBSITE every day
Goog the perfect ruse to slip into SEO orfice
Putin: Crack Tor for me and I'll make you a MILLIONAIRE
Russian Interior Ministry offers big pile o' roubles for busting pro-privacy browser
prev story

Whitepapers

Designing a Defense for Mobile Applications
Learn about the various considerations for defending mobile applications - from the application architecture itself to the myriad testing technologies.
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Top 8 considerations to enable and simplify mobility
In this whitepaper learn how to successfully add mobile capabilities simply and cost effectively.
Seven Steps to Software Security
Seven practical steps you can begin to take today to secure your applications and prevent the damages a successful cyber-attack can cause.
Boost IT visibility and business value
How building a great service catalog relieves pressure points and demonstrates the value of IT service management.