Home  › Email › Email Marketing

The Deadly Duo: Spam and Viruses, August 2006

  |  September 29, 2006   |  Comments

Spammers go back to their old tricks and send spam messages embedded in Word and HTML documents.

Nine Microsoft employees received certificates of "Exceptional Service in the Public Interest" for aiding the FBI in the resolution of the 2005 Mytob/Zotob computer worm investigation. The case resulted in the arrest of two individuals located in Morocco.

Spammers recently picked up a new tactic to harvest e-mail addresses. According to Sophos, the nefarious bulk mailers pose as chain mail researchers, asking recipients to forward the message as if it was a chain e-mailed joke; potentially collecting the e-mail addresses of entire address books or departments for those who forward jokes to coworkers.

The same security firm found a worm posing as a security patch. The W32/Stratio-AN worm, also referred to as the Stration worm, is e-mailed, usually with the subject "Mail server report." Instead of the perceived necessary fix, the recipient is tricked into downloading the malicious worm.

Top 10 Malware, August 2006
RankMalwareFrequency (%)
1W32/Netsky-P19.9
2W32/Mytob-AS15.8
3W32/Bagle-Zip8.0
4W32/Nyxem-D6.4
5W32/Netsky-D4.4
6W32/Mytob-C4.1
7W32/Mytob-E3.2
8W32/MyDoom-O3.0
9W32/Zafi-B2.7
10W32/Mytob-FO1.5
Others31.0
Source: Sophos Plc., 2006

Top 10 Hoaxes, August 2006
PositionHoaxPercentage of Reports
1Olympic torch11.0
2Hotmail hoax8.5
3Bonsai kitten4.6
4Budweiser frogs screensaver3.8
5Meninas da Playboy3.4
6MSN is closing down3.1
7Bill Gates fortune2.8
7Justice for Jamie2.8
8A virtual card for you2.6
9Mobile phone hoax1.7
Others55.7
Source: Sophos Plc., 2006

Earlier this year, spammers inserted messages within images, varying each execution to fool spam filters. McAfee Avert Labs recognized a trend toward the usage of Word and HTML coding to spread the spam word. Prior to the rise in image spam, this tactic was deployed.

"We often see successful attacks cycled," McAfee Avert Labs Security Researach and Communications manager David Marcus told ClickZ Stats. "It's an ongoing ebb and flow, we'll see techniques used and then go away for a while."

Spammers also cycled through 72 percent more domains, which resulted in an uptake of spammers using URLs within messages including in Word documents.

August saw a 30 percent increase over the previous month in directory harvest attacks (DHA), as recognized by Postini. A DHA is when a spammer hijacks and steals the entire e-mail directory of an enterprise, then overwhelms the company's e-mail server with junk messages. Such attacks can slow e-mail traffic for the company by mimicking a DoS (define) event.

A report from Kaspersky Labs details virus and spam activity for the first six months of 2006. It notes a 9 percent increase in the number of Trojans, compared to the first half of 2005. Viruses and worms experienced a 1.1 percent dip, and malware declined by 2.3 percent in the same period.

Online Scanner Top 20, August 2006
PositionNamePercentage
1Email-Worm.Win32.Mydoom.m4.93
2Email-Worm.Win32.NetSky.q0.74
3Email-Worm.Win32.Nyxem.e0.31
4Trojan-Dropper.Win32.Agent.asl0.22
5Backdoor.IRC.Zapchast0.16
6Email-Worm.Win32.NetSky.aa0.15
7Trojan-Downloader.Win32.Agent.arc0.15
8Backdoor.Win32.mIRC-based0.13
9Trojan-Proxy.Win32.Horst.av0.12
10Virus.DOS.PS-MPC-based0.10
11Email-Worm.Win32.Rays0.10
12not-a-virus:Monitor.Win32.Perflogger.1630.10
13not-a-virus:RiskTool.Win32.HideWindows0.09
14Email-Worm.Win32.Bagle.fj0.09
15Trojan-Spy.Win32.Banker.anv0.09
16Net-Worm.Linux.Ramen0.09
17Email-Worm.Win32.Brontok.q0.09
18Virus.Win32.Parite.b0.08
19Backdoor.IRC.Acnuz0.08
20Backdoor.IRC.Mimic0.07
Other malicious programs92.11
Source: Kaspersky Lab, 2006

ClickZ Live Chicago Join the Industry's Leading eCommerce & Direct Marketing Experts in Chicago
ClickZ Live Chicago (Nov 3-6) will deliver over 50 sessions across 4 days and 10 individual tracks, including Data-Driven Marketing, Social, Mobile, Display, Search and Email. Check out the full agenda and register by Friday, Oct 3 to take advantage of Early Bird Rates!

ABOUT THE AUTHOR

Enid Burns

COMMENTSCommenting policy

comments powered by Disqus

Get ClickZ Email newsletters delivered right to your inbox. Subscribe today!

COMMENTS

UPCOMING EVENTS

Featured White Papers

IBM: Social Analytics - The Science Behind Social Media Marketing

IBM Social Analytics: The Science Behind Social Media Marketing
80% of internet users say they prefer to connect with brands via Facebook. 65% of social media users say they use it to learn more about brands, products and services. Learn about how to find more about customers' attitudes, preferences and buying habits from what they say on social media channels.

An Introduction to Marketing Attribution: Selecting the Right Model for Search, Display & Social Advertising

An Introduction to Marketing Attribution: Selecting the Right Model for Search, Display & Social Advertising
If you're considering implementing a marketing attribution model to measure and optimize your programs, this paper is a great introduction. It also includes real-life tips from marketers who have successfully implemented attribution in their organizations.

Jobs

    • Tier 1 Support Specialist
      Tier 1 Support Specialist (Agora Inc.) - BaltimoreThis position requires a highly motivated and multifaceted individual to contribute to and be...
    • Recent Grads: Customer Service Representative
      Recent Grads: Customer Service Representative (Agora Financial) - BaltimoreAgora Financial, one of the nation's largest independent publishers...
    • Managing Editor
      Managing Editor (Common Sense Publishing) - BaltimoreWE’RE HIRING: WE NEED AN AMAZING EDITOR TO POLISH WORLD-CLASS CONTENT   The Palm...