Commtouch Q3 Spam Statistics: Spam Problem Reaches New Peak, Expands in Every Dimension.Majority of Spam Generated by Zombies Zombies Companies that continue to operate even though they are insolvent. Also known as living dead. Notes: It's advisable to avoid investing in zombies at all costs their life expectancies are highly unpredictable. , Most Phishing Against eBay and Paypal MOUNTAIN VIEW, Calif. -- Spam attacks - and in particular image spam An e-mail advertisement in the form of an image in the message rather than text in order to avoid detection as spam. Spam filters typically analyze words in a message, which is relatively fast, but scanning images with optical character recognition (OCR) to extract the text is slow. and zombie-generated spam - grew during the third quarter of 2006, achieving new heights of 3.5 million attack patterns in a single day. Each attack pattern is typically comprised of tens of thousands of emails. Image spam increased in number and severity during the quarter, reaching 50% of all spam during its peak distribution time. In the second quarter, it reached a peak of 30% of all spam. Animated GIF A moving picture in GIF format, which is made up of a series of frames. When displayed, they provide an animated sequence that cycles over and over without stopping. Although popular on the Web, animated GIFs are larger than single-frame GIFs and take longer to download. Image Spam: Fatter Than Ever Image-spammers added new complexity to their wares during the quarter, coming out with animated images distributed on a massive scale for the first time. These animated images are typically comprised of three to seven individual frames that play in repetition, similar to a movie. The main message is in a single frame that appears for the longest time - around 25 seconds - and the other frames contain either subliminal messages (e.g. "buy ... buy C* buy C*") or random pixels to attempt to fool anti-spam technologies. Animated image spam typically weighs 44KB, around eight times the size of regular textual spam, which averages around 5.5KB. Based on Commtouch's analysis, on average, image-based spam accounts for 20% of all spam. Since it is five to eight times larger than text spam (depending on the type of image), total bandwidth consumption and redundant storage necessitated by spam has more than doubled since the beginning of the year. "The bandwidth and storage requirements of such resource-intensive spam weighs heavily on most IT organizations," said Amir Lev lev-, pref See levo-. , Commtouch's CTO (Chief Technical Officer) The executive responsible for the technical direction of an organization. See CIO and salary survey. . "In addition to the sheer size of each individual message, the spam messages are sent in enormous quantities, which can overload an enterprise if it is not using an anti-spam engine that knows how to identify and block them." Spammers have also started using images in PNG (Portable Network Graphics) A bitmapped graphics file format endorsed by the World Wide Web Consortium. It is expected to eventually replace the GIF format, because there are lingering legal problems with GIFs. format, where previously they were using only GIF GIF in full Graphics Interchange Format Standard computer file format for graphic images. GIF files use data compression to reduce the file size. The original version of the format was developed by CompuServe in 1987. images. This is another method to try to bypass anti-spam filters. View Commtouch's most recent report on image-based spam. Spam Distribution Networks Growing as Zombies Take Over Home PCs Zombie A computer that has been covertly taken over in order to perform some nefarious task. It is estimated that millions of PCs around the world have been compromised and, under the control of a third party, routinely transmit messages unbeknownst to the user. networks or 'botnets' have grown in size and severity throughout the quarter, as well. Commtouch research also identified hundreds of thousands of newly activated zombie machines each day throughout the third quarter. Zombies are typically compromised home computers with a broadband connection See broadband and wireless broadband. to the Internet. Commtouch research identified that on average, 85% of spam messages sent during the third quarter of 2006 were sent via zombie-infected computers. "Zombie networks are impossible to block out by traditional 'blacklisting' since they are constantly changing," Mr. Lev commented. "They are like the fireflies of the spam universe - the zombie is born when the computer gets infected by rogue software Rogue security software is software that uses malware (malicious software) or malicious tools to advertise or install itself or to force computer users to pay for removal of nonexistent spyware. , but it only remains active for a short time from the same IP address. Only a real-time detection engine can provide effective protection against zombie-generated spam messages." What's All the Spam About? Spam touting penny stocks Inexpensive issues of stock, typically selling at less than $1 a share, in companies that often are newly formed or involved in highly speculative ventures. Penny stocks are usually available for sale over-the-counter, that is, among brokers and customers themselves, as has been increasing in the last several quarters due to recent barrages of image-based spam. Stock scams are tailor-made for image-based spam, since they do not require any hyperlinks to spammer web sites, instead simply directing the reader to purchase the stock. Below is the breakdown of the most pervasive content of spam messages for the third quarter of 2006: Pharmaceuticals < 27% Stock < 18% Sex Enhancers < 12% Finance (work from home, mortgage, etc.) < 11% Gambling < 11% Pornography < 6% Other < 15% Phishing Increased: Main Targets eBay and Paypal Phishing, i.e. attempted fraud via email, is rising with the ever-rising tide of spam. Commtouch research shows that during the third quarter, nearly half of all phishing attempts preyed on account holders in eBay or Paypal, divided nearly equally between the two (24% eBay, 24% Paypal). Phishing email messages typically use social engineering tactics to make the reader believe that they are viewing a legitimate communication from a financial institution. Then users are lured into providing their usernames and passwords by "logging in A colloquial term for the process of making the initial record of the names of individuals who have been brought to the police station upon their arrest. The process of logging in is also called booking. " to the fictitious site which they access by clicking a hyperlink in the email. "Regardless of the anti-spam legislation in effect in many countries, we see that the spam problem is getting worse with each passing day," said Mr. Lev. "Double-digit percentages of image-based spam, enormous zombie spam networks, growth in phishing attempts -- all point to the fact that legislation alone can never solve the problem. The answer is rooted in technology-based filtering and blocking." Commtouch RPD RPD Rapid RPD Radiation Protection Dosimetry RPD Rapid Product Development RPD Rochester Police Department RPD Recurrent Pattern Detection (Commtouch anti-spam engine) RPD Relative Percent Difference RPD Removable Partial Denture [TM] technology for fighting spam and email-borne malware is content-agnostic. Unlike content-based filters, it relies on analyzing distribution patterns of billions of email messages to block phishing attempts and image-based spam effectively. About Commtouch Commtouch Software Ltd. (NASDAQ NASDAQ in full National Association of Securities Dealers Automated Quotations U.S. market for over-the-counter securities. Established in 1971 by the National Association of Securities Dealers (NASD), NASDAQ is an automated quotation system that reports on :CTCH CTCH Common Traffic Channel ) is dedicated to protecting and preserving the integrity of the world's most important communications tool -- email. Commtouch has over 15 years of experience developing messaging software and is a global developer and provider of proprietary anti-spam and Zero-Hour virus protection solutions. Using core technologies including RPD (Recurrent Pattern Detection[TM]), the Commtouch Detection Center analyzes billions of email messages per month to identify new spam and malware outbreaks within minutes of their introduction into the Internet. Integrated by more than 50 OEM (Original Equipment Manufacturer) The rebranding of equipment and selling it. The term initially referred to the company that made the products (the "original" manufacturer), but eventually became widely used to refer to the organization that buys the products and partners, Commtouch technology protects thousands of organizations, with over 50 million users in over 100 countries. Commtouch is headquartered in Netanya, Israel, and has a subsidiary in Mountain View, CA. For more information, see: www.commtouch.com, including the Commtouch online lab detailing spam statistics and charts. Recurrent Pattern Detection, RPD and Zero-Hour are trademarks, and Commtouch is a registered trademark, of Commtouch Software Ltd. U.S. Patent No. 6,330,590 is owned by Commtouch. |
|
||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion