Category: Tech

Posted on
by

The Register has published an interview with a link spammer. Link spamming is more like vandalism than junk mail, but the spammers still fall back on the old “It could be argued that a website owner is actually inviting content to their site when they allow comments” BS. Do we need to put up a digital “No Trespassing” sign? Does anyone really think the spammers would honor it?

The interviewee explains that “it’s nothing personal,” a cliché you probably can’t even get into a script without acknowledging its triteness. You know, I’m sure if someone breaks into my house and uses my printer to make a few hundred posters, it’s nothing personal either…but it doesn’t justify it.

(via The War on Spam)

Posted on
by

A brief history:

  1. Spammers send mail directly to victims.
  2. Server admins block by source, victims complain and try to get spammers kicked off their networks.
  3. Spammers relay through third-party servers to disguise their origin.
  4. Server admins shut close relays, and block mail from open relays.
  5. Spammers relay through trojaned zombies straight to victims.
  6. Network admins block outgoing mail traffic except through their servers.
  7. Spammers relay through zombies’ ISPs’ mail servers.
  8. ????

We’re in the early stages of step 6, with broadband ISPs starting to block outgoing direct-to-MX mail traffic. The obvious response by spammers is, of course, Continue reading

Posted on
by

A while back I received a strange spam containing a quantum physics paper. At the time I wasn’t sure what to make of it, although someone suggested it might just be a randomly mailed document sent by a virus.

Someone else who received it referred to it as Idea Spam—spam designed not to sell or advertise a product, but to promote an idea. Basically, spam as a meme vector.

Another person characterized the paper (or rather, the paper’s author) as a crank. Apparently it’s not unusual for pseudo-scientists to indiscriminately send their “findings” to anyone they think might listen. My favorite quote from this discussion:

i heard that one professor (i can’t remember whom) has a folder in his cabinet titled “public relations” where he stuffs things from these maniacs. when he was asked why he didn’t just label the folder “nut cases,” he replied that “then they’d get mad. this way, they will feel like i might look at it later and just go away.”

And so the mystery is solved.

Posted on
by

I’ve got to start reading BBspot more often. I wandered in there via Mozillazine and found this post about Microsoft’s new antispyware program removing Internet Explorer.

“It shows how powerful our AntiSpyware program is,” said Weatherbee. “Not only is it able to remove spyware from the system, but also the source of most spyware. Our competitors can’t match that.”

Ah, techie satire!

Posted on
by

(Book cover)While reading an article suggesting Microsoft isn’t trying very hard to stop spam, I recognized the writer as the author of Spam Kings, the book I’m currently reading. It’s a fascinating and, surprisingly, entertaining read about people on both sides of the fight.

Thanks to Salon, I now know that Brian McWilliams has a Spam Kings Blog on which he’s been posting follow-ups to stories from the book, and, of course, newer stories in the seemingly neverending war on spam.

(via The Spam Weblog)

Posted on
by

Something that could help with the ever-shrinking window between turning on a new (Windows) computer and getting hacked by some automatic probe is to just make downloading security updates part of the setup process. I installed two Linux distributions this weekend, Mandrake 10.1 and SuSE 9.2, and both did this.

What I liked about the SuSE installer was the way the option was worded. The setup utility asks you if you want to “test your Internet connection.” It tests the connection by downloading the latest release notes and checking for updates! (Unfortunately, it somehow chose an old mirror of the SuSE site—not the one I used during the installation—and the process failed.)

Posted on
by

Three days ago I created a bunch of new spamtrap addresses at work and posted them in hidden places on websites where no one would actually see them. Today, two of them received requests for help moving large sums of money out of Nigeria.

Yesterday afternoon, I signed up a couple of sites with Project Honeypot. One of them has already been spidered 6 times (though two of those were Yahoo).

»All pages site-wide with this tag