New reason to avoid 'unsubscribe' links.We've always been told that trying to "opt-out" from spam messages is probably a bad idea. Spam filtering A software routine that deletes incoming spam or diverts it to a "junk" mailbox (see spam folder). Also called "spam blockers," spam filters are built into a user's e-mail program. firm MessageLabs now says there's a new reason not to click--spammers are starting to sneak special code into that opt-out link which turns the spam recipient into an unwitting accomplice accomplice: see accessory. . The link is really a clever trick designed to turn the victim's computer into a zombie A computer that has been covertly taken over in order to perform some nefarious task. It is estimated that millions of PCs around the world have been compromised and, under the control of a third party, routinely transmit messages unbeknownst to the user. that can be used to send out more spam. By using an unsubscribe To cancel a service. It is often possible to unsubscribe to an e-mail service by typing the word "unsubscribe" into a reply message. Contrast with subscribe. See opt-out. link in an e-mail, not only are you saying this is a live e-mail address See Internet address. e-mail address - electronic mail address , you are also have the risk of downloading a Trojan that turns your computer into an open proxy For Wikipedia's policy on editing from open proxies, please see Wikipedia:Open proxies. An open proxy is a proxy server which is accessible by any Internet user. for sending spam MessageLabs The company has trapped several thousand messages laced with the special code in recent weeks. Other variations of the attack place keystroke loggers on victims' computers enabling the spammer to collect personal information--including passwords and financial account data--from the victim. MessageLabs says now 72 percent of all e-mail flying around the Internet is actually spam. For years, experts have debated the real-life effect of clicking on unsubscribe links usually found at the bottom of spam. The links are now required by federal law, but conventional wisdom suggests "opting out" often has the opposite effect, because it announces to the spammer that the e-mail address is accurate and active. That theory was partially debunked in July 2002, when the Federal Trade Commission announced results of a comprehensive study on spam. It found replying to opt-out messages didn't increase the amount of spam received, and usually, the links were broken, or sent messages to dead e-mail accounts. And on occasion, replying to the opt-out link actually did work, and result in less spam. But the MessageLabs announcement regarding opt-out links gives consumers a whole new reason to not trust anything found inside a spammer's message. It's easy for programmers to write tricky e-mails that send users to unexpected Web sites. A message might have hyperlinked words reading "http://MSN.MSNBC.COM," for example, but hidden computer code could really send the recipient to an entirely different site. That's what's happening with these new opt-out messages. In some cases, the link simply aims potential victims at an executable file--a Trojan horse See Trojan. Trojan Horse hollow horse concealed soldiers, enabling them to enter and capture Troy. [Gk. Myth.: Iliad] See : Deceit (application, security) Trojan horse program sitting in a hidden location on the Internet. In others, slightly more elaborate techniques are used to inject code onto a machine after it is directed to a Web site. www.msnbc MSNBC Microsoft/National Broadcasting Company .msn.com/ |
|
||||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion