Home  › Email › Email Marketing

The Deadly Duo: Spam and Viruses, August 2006

  |  September 29, 2006   |  Comments

Spammers go back to their old tricks and send spam messages embedded in Word and HTML documents.

Nine Microsoft employees received certificates of "Exceptional Service in the Public Interest" for aiding the FBI in the resolution of the 2005 Mytob/Zotob computer worm investigation. The case resulted in the arrest of two individuals located in Morocco.

Spammers recently picked up a new tactic to harvest e-mail addresses. According to Sophos, the nefarious bulk mailers pose as chain mail researchers, asking recipients to forward the message as if it was a chain e-mailed joke; potentially collecting the e-mail addresses of entire address books or departments for those who forward jokes to coworkers.

The same security firm found a worm posing as a security patch. The W32/Stratio-AN worm, also referred to as the Stration worm, is e-mailed, usually with the subject "Mail server report." Instead of the perceived necessary fix, the recipient is tricked into downloading the malicious worm.

Top 10 Malware, August 2006
RankMalwareFrequency (%)
1W32/Netsky-P19.9
2W32/Mytob-AS15.8
3W32/Bagle-Zip8.0
4W32/Nyxem-D6.4
5W32/Netsky-D4.4
6W32/Mytob-C4.1
7W32/Mytob-E3.2
8W32/MyDoom-O3.0
9W32/Zafi-B2.7
10W32/Mytob-FO1.5
Others31.0
Source: Sophos Plc., 2006

Top 10 Hoaxes, August 2006
PositionHoaxPercentage of Reports
1Olympic torch11.0
2Hotmail hoax8.5
3Bonsai kitten4.6
4Budweiser frogs screensaver3.8
5Meninas da Playboy3.4
6MSN is closing down3.1
7Bill Gates fortune2.8
7Justice for Jamie2.8
8A virtual card for you2.6
9Mobile phone hoax1.7
Others55.7
Source: Sophos Plc., 2006

Earlier this year, spammers inserted messages within images, varying each execution to fool spam filters. McAfee Avert Labs recognized a trend toward the usage of Word and HTML coding to spread the spam word. Prior to the rise in image spam, this tactic was deployed.

"We often see successful attacks cycled," McAfee Avert Labs Security Researach and Communications manager David Marcus told ClickZ Stats. "It's an ongoing ebb and flow, we'll see techniques used and then go away for a while."

Spammers also cycled through 72 percent more domains, which resulted in an uptake of spammers using URLs within messages including in Word documents.

August saw a 30 percent increase over the previous month in directory harvest attacks (DHA), as recognized by Postini. A DHA is when a spammer hijacks and steals the entire e-mail directory of an enterprise, then overwhelms the company's e-mail server with junk messages. Such attacks can slow e-mail traffic for the company by mimicking a DoS (define) event.

A report from Kaspersky Labs details virus and spam activity for the first six months of 2006. It notes a 9 percent increase in the number of Trojans, compared to the first half of 2005. Viruses and worms experienced a 1.1 percent dip, and malware declined by 2.3 percent in the same period.

Online Scanner Top 20, August 2006
PositionNamePercentage
1Email-Worm.Win32.Mydoom.m4.93
2Email-Worm.Win32.NetSky.q0.74
3Email-Worm.Win32.Nyxem.e0.31
4Trojan-Dropper.Win32.Agent.asl0.22
5Backdoor.IRC.Zapchast0.16
6Email-Worm.Win32.NetSky.aa0.15
7Trojan-Downloader.Win32.Agent.arc0.15
8Backdoor.Win32.mIRC-based0.13
9Trojan-Proxy.Win32.Horst.av0.12
10Virus.DOS.PS-MPC-based0.10
11Email-Worm.Win32.Rays0.10
12not-a-virus:Monitor.Win32.Perflogger.1630.10
13not-a-virus:RiskTool.Win32.HideWindows0.09
14Email-Worm.Win32.Bagle.fj0.09
15Trojan-Spy.Win32.Banker.anv0.09
16Net-Worm.Linux.Ramen0.09
17Email-Worm.Win32.Brontok.q0.09
18Virus.Win32.Parite.b0.08
19Backdoor.IRC.Acnuz0.08
20Backdoor.IRC.Mimic0.07
Other malicious programs92.11
Source: Kaspersky Lab, 2006

ClickZ Live Chicago Learn Digital Marketing Insights From Leading Brands!
ClickZ Live Chicago (Nov 3-6) will deliver over 50 sessions across 10 individual tracks, including Data-Driven Marketing, Social, Mobile, Display, Search and Email. Check out the full agenda, or register and attend one of the best ClickZ events yet!

ABOUT THE AUTHOR

Enid Burns

COMMENTSCommenting policy

comments powered by Disqus

Get ClickZ Email newsletters delivered right to your inbox. Subscribe today!

COMMENTS

UPCOMING EVENTS

UPCOMING TRAINING

Featured White Papers

Google My Business Listings Demystified

Google My Business Listings Demystified
To help brands control how they appear online, Google has developed a new offering: Google My Business Locations. This whitepaper helps marketers understand how to use this powerful new tool.

5 Ways to Personalize Beyond the Subject Line

5 Ways to Personalize Beyond the Subject Line
82 percent of shoppers say they would buy more items from a brand if the emails they sent were more personalized. This white paper offer five tactics that will personalize your email beyond the subject line and drive real business growth.

WEBINARS

    Information currently unavailable

Resources

Jobs

    • E-Letter Managing Editor--Stephen Petranek’s Tomorrow in Review
      E-Letter Managing Editor--Stephen Petranek’s Tomorrow in Review (Agora Financial) - BaltimoreWe’re looking for a talented, persuasive storyteller...
    • Executive Assistant
      Executive Assistant (Agora Inc. ) - BaltimoreAgora Inc., an international publishing company, located in the Mt. Vernon district of Baltimore, MD...
    • Paid Search Specialist
      Paid Search Specialist (Boathouse, Inc.) - Waltham  Boathouse is looking for a Paid Search Specialist to work as a part of the Digital Acquisition...