Home  › Email › Email Marketing

The Deadly Duo: Spam and Viruses, August 2006

  |  September 29, 2006   |  Comments

Spammers go back to their old tricks and send spam messages embedded in Word and HTML documents.

Nine Microsoft employees received certificates of "Exceptional Service in the Public Interest" for aiding the FBI in the resolution of the 2005 Mytob/Zotob computer worm investigation. The case resulted in the arrest of two individuals located in Morocco.

Spammers recently picked up a new tactic to harvest e-mail addresses. According to Sophos, the nefarious bulk mailers pose as chain mail researchers, asking recipients to forward the message as if it was a chain e-mailed joke; potentially collecting the e-mail addresses of entire address books or departments for those who forward jokes to coworkers.

The same security firm found a worm posing as a security patch. The W32/Stratio-AN worm, also referred to as the Stration worm, is e-mailed, usually with the subject "Mail server report." Instead of the perceived necessary fix, the recipient is tricked into downloading the malicious worm.

Top 10 Malware, August 2006
RankMalwareFrequency (%)
1W32/Netsky-P19.9
2W32/Mytob-AS15.8
3W32/Bagle-Zip8.0
4W32/Nyxem-D6.4
5W32/Netsky-D4.4
6W32/Mytob-C4.1
7W32/Mytob-E3.2
8W32/MyDoom-O3.0
9W32/Zafi-B2.7
10W32/Mytob-FO1.5
Others31.0
Source: Sophos Plc., 2006

Top 10 Hoaxes, August 2006
PositionHoaxPercentage of Reports
1Olympic torch11.0
2Hotmail hoax8.5
3Bonsai kitten4.6
4Budweiser frogs screensaver3.8
5Meninas da Playboy3.4
6MSN is closing down3.1
7Bill Gates fortune2.8
7Justice for Jamie2.8
8A virtual card for you2.6
9Mobile phone hoax1.7
Others55.7
Source: Sophos Plc., 2006

Earlier this year, spammers inserted messages within images, varying each execution to fool spam filters. McAfee Avert Labs recognized a trend toward the usage of Word and HTML coding to spread the spam word. Prior to the rise in image spam, this tactic was deployed.

"We often see successful attacks cycled," McAfee Avert Labs Security Researach and Communications manager David Marcus told ClickZ Stats. "It's an ongoing ebb and flow, we'll see techniques used and then go away for a while."

Spammers also cycled through 72 percent more domains, which resulted in an uptake of spammers using URLs within messages including in Word documents.

August saw a 30 percent increase over the previous month in directory harvest attacks (DHA), as recognized by Postini. A DHA is when a spammer hijacks and steals the entire e-mail directory of an enterprise, then overwhelms the company's e-mail server with junk messages. Such attacks can slow e-mail traffic for the company by mimicking a DoS (define) event.

A report from Kaspersky Labs details virus and spam activity for the first six months of 2006. It notes a 9 percent increase in the number of Trojans, compared to the first half of 2005. Viruses and worms experienced a 1.1 percent dip, and malware declined by 2.3 percent in the same period.

Online Scanner Top 20, August 2006
PositionNamePercentage
1Email-Worm.Win32.Mydoom.m4.93
2Email-Worm.Win32.NetSky.q0.74
3Email-Worm.Win32.Nyxem.e0.31
4Trojan-Dropper.Win32.Agent.asl0.22
5Backdoor.IRC.Zapchast0.16
6Email-Worm.Win32.NetSky.aa0.15
7Trojan-Downloader.Win32.Agent.arc0.15
8Backdoor.Win32.mIRC-based0.13
9Trojan-Proxy.Win32.Horst.av0.12
10Virus.DOS.PS-MPC-based0.10
11Email-Worm.Win32.Rays0.10
12not-a-virus:Monitor.Win32.Perflogger.1630.10
13not-a-virus:RiskTool.Win32.HideWindows0.09
14Email-Worm.Win32.Bagle.fj0.09
15Trojan-Spy.Win32.Banker.anv0.09
16Net-Worm.Linux.Ramen0.09
17Email-Worm.Win32.Brontok.q0.09
18Virus.Win32.Parite.b0.08
19Backdoor.IRC.Acnuz0.08
20Backdoor.IRC.Mimic0.07
Other malicious programs92.11
Source: Kaspersky Lab, 2006

ClickZ Live New York What's New for 2015?
You spoke, we listened! ClickZ Live New York (Mar 30-Apr 1) is back with a brand new streamlined agenda. Don't miss the latest digital marketing tips, tricks and tools that will make you re-think your strategy and revolutionize your marketing campaigns. Super Saver Rates are available now. Register today!

ABOUT THE AUTHOR

Enid Burns

COMMENTSCommenting policy

comments powered by Disqus

Get ClickZ Email newsletters delivered right to your inbox. Subscribe today!

COMMENTS

UPCOMING EVENTS

UPCOMING TRAINING

Featured White Papers

Google My Business Listings Demystified

Google My Business Listings Demystified
To help brands control how they appear online, Google has developed a new offering: Google My Business Locations. This whitepaper helps marketers understand how to use this powerful new tool.

5 Ways to Personalize Beyond the Subject Line

5 Ways to Personalize Beyond the Subject Line
82 percent of shoppers say they would buy more items from a brand if the emails they sent were more personalized. This white paper offer five tactics that will personalize your email beyond the subject line and drive real business growth.

WEBINARS

    Information currently unavailable

Jobs

    • Lead Generation Specialist
      Lead Generation Specialist (The Oxford Club) - BaltimoreThe Oxford Club is seeking a talented writer/marketer to join our growing email lead-generation...
    • Health Marketing Editor
      Health Marketing Editor (Agora Inc.) - BaltimoreCome flex your intellectual muscle as part of Agora, Inc’s (http://agora-inc.com/) legal team...
    • Technical Business Analyst
      Technical Business Analyst (OmniVista Health) - BaltimoreOmniVista Health is looking to add a Technical Business Analyst to our expanding team...