Feeds

Spam levels bounce back after botnet takedown

Even botnets have backup now

Securing Web Applications Made Simple and Scalable

Spam levels are returning to normal following the recent takedown of crime-friendly ISP 3FN, which temporarily interrupted the operation of a significant spam spewing botnet.

Junk mail volumes dropped 30 per cent after the Federal Trade Commission forced the closure of 3FN in early June, according to Google. Google's latest quarterly spam trends report records a 14 per cent rise in junk mail volumes from the 3FN takedown low by the end of June.

Stats from Postini, the online spam and virus filtering service acquired by Google, reveal that average spam levels in the second quarter of 2009 were 53 per cent higher than in the first quarter and six per cent higher than in the same period of 2008.

The latest figures from security services firm MessageLabs, which is now a part of Symantec, tell a slightly different story. It reckons that the Cutwail botnet experienced a short period of downtime following the shutdown of California-based 3FN ISP (AKA Pricewert LLC and APS Telecom) on 5 June.

However, for the month of June as a whole, spam level were unchanged at around 90.4 per cent of overall mail volumes, after MessageLabs' first level filters threw out email from known bad sources.

Cutwail, one of the largest and most active botnets, was quickly back blitzing email inboxes with useless junk, in sharp contrast to the disruption to the spam economy created by a similar takedown last year, MessagLabs reports.

"Cutwail’s recovery to one-third of its original levels, after only a few hours, highlights the progress spammers have made since the McColo shutdown in November," said Paul Wood, MessageLabs Intelligence senior analyst at Symantec. "Spammers have learned the importance of having a backup for command and control channels."

MessageLabs reports that spam from botnets accounted for the vast majority (83.2 per cent) of all junk mail in June, with the remainder spewing out from compromised mail servers and webmail accounts. Image spam accounted for eight to ten per cent of all junk mail last month, it adds. ®

The smart choice: opportunity from uncertainty

More from The Register

next story
Mozilla fixes CRITICAL security holes in Firefox, urges v31 upgrade
Misc memory hazards 'could be exploited' - and guess what, one's a Javascript vuln
How long is too long to wait for a security fix?
Synology finally patches OpenSSL bugs in Trevor's NAS
Don't look, Snowden: Security biz chases Tails with zero-day flaws alert
Exodus vows not to sell secrets of whistleblower's favorite OS
Roll out the welcome mat to hackers and crackers
Security chap pens guide to bug bounty programs that won't fail like Yahoo!'s
HIDDEN packet sniffer spy tech in MILLIONS of iPhones, iPads – expert
Don't panic though – Apple's backdoor is not wide open to all, guru tells us
Researcher sat on critical IE bugs for THREE YEARS
VUPEN waited for Pwn2Own cash while IE's sandbox leaked
Four fake Google haxbots hit YOUR WEBSITE every day
Goog the perfect ruse to slip into SEO orfice
prev story

Whitepapers

Top three mobile application threats
Prevent sensitive data leakage over insecure channels or stolen mobile devices.
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Boost IT visibility and business value
How building a great service catalog relieves pressure points and demonstrates the value of IT service management.
Designing a Defense for Mobile Applications
Learn about the various considerations for defending mobile applications - from the application architecture itself to the myriad testing technologies.
Build a business case: developing custom apps
Learn how to maximize the value of custom applications by accelerating and simplifying their development.