I just got an email that starts out, “We are the leading manufacturer and exporter in China.”
OK, good for you, but what does this have to do with my personal website in California?
It all just adds to the noise…
Category: Spam
Giving virus writers honest work
By way of Justin Mason and the SpamAssassin mailing list comes this post about writing add-ons for Outlook.
Seth Goodman writes of Outlook’s contact list:
This feature was apparently added for the convenience of virus writers, who it appears were one of the key groups that set the design requirements for this product
Ronald F. Guilmette replies:
So if I want source code for a software tool that can extract addresses from a personal Outlook address book, I guess that I should just go out and hire a virus writer! Hummm. I would have no problem with that. At least this would give them some honest work for a change… keeping them off the streets and out of trouble for a short while.
So now, where does one post a ‘HELP WANTED’ ad for a virus writer?
Butterfly wings
Last week I started looking at ways to cut down on false positives in our spam filters. I’ve only seen two in my own mailbox this year, but of course everyone gets different kinds of email. I’ve been trolling the server logs for low-scoring “spam,” looking for anything that looks like it might be legit, particularly if the Bayes subsystem has already identified it correctly but isn’t enough to counteract the score assigned by other rules. (Unfortunately, it’s hard to tell when all you’ve got is the sender, subject, and list of spam rules.)
One item I noticed was a copy of the Microsoft Technet Flash newsletter. I thought this was odd, since I’d gotten a copy of the same newsletter and it hadn’t been labeled. In fact, it turned out that my copy only scored 0.3 points, and the other hit 6.4! (5 points indicates probable spam.) What could explain such a disparity?
Answer: two very small differences. Continue reading
Ethnic Spam Stew
I don’t usually post in this category, but the latest Nigerian clone to hit my inbox was worth it. It claimed to be from a British barrister, acting on behalf of a recently deceased French national, attempting to relocate funds from Saudi Arabia. The contact information was an email address as “Barrister Lindsay Smith” was currently in Ireland. I think this one’s winning the “Most Countries Invoked in a Single Spam” award so far as my inbox goes.
On a side note, the only information requested was a name, address, and phone/fax number–not a bank account or credit card or anything of the sort. Maybe the spammers are figuring that asking for financial info is rapidly becoming suicide. Or maybe they think it’ll work better if you establish a rapport first?
SpamAssassin Logo Contest
Just saw a link for the current entries in the SpamAssassin Logo Contest. Entries range from a simple updating of the current logo through ninjas of varying danger and cuteness levels, and a few that have actually dropped the ninja motif altogether.
Oddly, a few of them remind me of the Peacekeeper insignia from Farscape. Maybe it’s just the red-and-black color scheme. Speaking of which, it turns out that logo was based directly on a 1919 painting called “Beat the Whites with the Red Wedge” by Russian Constructivist artist El Lissitzky. (originally linked to sebacea.com.)
Back to SpamAssassin, the contest is open through August 6.
Road Rage on the Information Superhighway
I’ve seen my share of angry complaints about spam with forged sender addresses, but this is amazing: Aunty Spam’s Slam a Spammer Blog is reporting that Sunnyvale resident Charles Booher called up the “sender” of some spam and threatened him with torture and death.
Of course, (a) death threats are criminal, and (b) the callee was not the actual sender but a third party whose address had been forged. Booher is now facing criminal charges with up to five years of prison and a quarter-million dollars in fines.
“Aunty Spam” didn’t provide any further information, but a quick Google search turned up articles suggesting this isn’t the entire story. Mercury News reports [archive.org] that the person Booher threatened, Douglas Mackay, worked at a call center that handled calls for, among other companies, the one that did send the spam. Metroactive reports on an even closer connection: it seems that the spamming corporation was registered to Mackay’s brother. A DOJ press release is (appropriately) matter-of-fact about the allegations. This all went down last November. In my brief search I haven’t found anything about the current status of the case.
Back on the subject of forgery, the SPF website has gotten a major facelift. SPF, or Sender Policy Framework, is a scheme that lets domain name owners identify which servers they use to send mail, so that receiving servers can pre-screen incoming mail for forgeries. Aside from cutting down on phishing attacks, at least with SPF there’s a better chance you’ll be complaining to the right person!
It’s All True!
Here are several humor articles that have been posted to the SpamAssassin discussion list over the past week:
The TechWeb Spin: All spam is true! (Fredric Paul, Internet Week, June 29, 2004): Yes, you read it here: it’s all true! The author explains about all the money he’s gotten from deposed Nigerian dictators, the software discounts, the combined advantages of certain pharmaceuticals and dating services, and more! [Edit: Sadly the article was deleted before the Internet Archive got to it.]
It’s true, I read it on the Net! (author unknown): I remember seeing this way back when, under the title “The Ultimate Chain Letter.” It’s kind of like the parody of the Good Times Virus (remember that one?) in that it combines everything. All the urban legends about stolen kidneys, rats at KFC, needles in pay phones, and satanic business leaders. All the email hoaxes about Bill Gates giving you money and dying kids asking for email. All the typical chain letter threats about not breaking the chain.
Spam is out of this world (Adam Turner, Syndey Morning Herald, April 1, 2004): An April Fools’ piece about the Mars Spirit rover being crippled by spam traffic: “The rover’s limited onboard artificial intelligence was foolish enough to apply for an shonky online marketing diploma. Soon after offers of cheap WD40 and antenna enlargements began clogging the link between Mars and NASA’s Deep Space Network.” It goes on to explain that Beagle was taken down by a Martian Nigerian scam.
Welcome to Spam University: a parody of a school site with ridiculously low entry requirements (At least four years of elementary school, No more than three felony convictions), course descriptions (Harvesting Addresses, Covering Your Tracks, Spamming Ethics – Canceled), alumni testimonials and more!