Home  › Email › Email Marketing

The Deadly Duo: Spam and Viruses, August 2006

  |  September 29, 2006   |  Comments

Spammers go back to their old tricks and send spam messages embedded in Word and HTML documents.

Nine Microsoft employees received certificates of "Exceptional Service in the Public Interest" for aiding the FBI in the resolution of the 2005 Mytob/Zotob computer worm investigation. The case resulted in the arrest of two individuals located in Morocco.

Spammers recently picked up a new tactic to harvest e-mail addresses. According to Sophos, the nefarious bulk mailers pose as chain mail researchers, asking recipients to forward the message as if it was a chain e-mailed joke; potentially collecting the e-mail addresses of entire address books or departments for those who forward jokes to coworkers.

The same security firm found a worm posing as a security patch. The W32/Stratio-AN worm, also referred to as the Stration worm, is e-mailed, usually with the subject "Mail server report." Instead of the perceived necessary fix, the recipient is tricked into downloading the malicious worm.

Top 10 Malware, August 2006
RankMalwareFrequency (%)
1W32/Netsky-P19.9
2W32/Mytob-AS15.8
3W32/Bagle-Zip8.0
4W32/Nyxem-D6.4
5W32/Netsky-D4.4
6W32/Mytob-C4.1
7W32/Mytob-E3.2
8W32/MyDoom-O3.0
9W32/Zafi-B2.7
10W32/Mytob-FO1.5
Others31.0
Source: Sophos Plc., 2006

Top 10 Hoaxes, August 2006
PositionHoaxPercentage of Reports
1Olympic torch11.0
2Hotmail hoax8.5
3Bonsai kitten4.6
4Budweiser frogs screensaver3.8
5Meninas da Playboy3.4
6MSN is closing down3.1
7Bill Gates fortune2.8
7Justice for Jamie2.8
8A virtual card for you2.6
9Mobile phone hoax1.7
Others55.7
Source: Sophos Plc., 2006

Earlier this year, spammers inserted messages within images, varying each execution to fool spam filters. McAfee Avert Labs recognized a trend toward the usage of Word and HTML coding to spread the spam word. Prior to the rise in image spam, this tactic was deployed.

"We often see successful attacks cycled," McAfee Avert Labs Security Researach and Communications manager David Marcus told ClickZ Stats. "It's an ongoing ebb and flow, we'll see techniques used and then go away for a while."

Spammers also cycled through 72 percent more domains, which resulted in an uptake of spammers using URLs within messages including in Word documents.

August saw a 30 percent increase over the previous month in directory harvest attacks (DHA), as recognized by Postini. A DHA is when a spammer hijacks and steals the entire e-mail directory of an enterprise, then overwhelms the company's e-mail server with junk messages. Such attacks can slow e-mail traffic for the company by mimicking a DoS (define) event.

A report from Kaspersky Labs details virus and spam activity for the first six months of 2006. It notes a 9 percent increase in the number of Trojans, compared to the first half of 2005. Viruses and worms experienced a 1.1 percent dip, and malware declined by 2.3 percent in the same period.

Online Scanner Top 20, August 2006
PositionNamePercentage
1Email-Worm.Win32.Mydoom.m4.93
2Email-Worm.Win32.NetSky.q0.74
3Email-Worm.Win32.Nyxem.e0.31
4Trojan-Dropper.Win32.Agent.asl0.22
5Backdoor.IRC.Zapchast0.16
6Email-Worm.Win32.NetSky.aa0.15
7Trojan-Downloader.Win32.Agent.arc0.15
8Backdoor.Win32.mIRC-based0.13
9Trojan-Proxy.Win32.Horst.av0.12
10Virus.DOS.PS-MPC-based0.10
11Email-Worm.Win32.Rays0.10
12not-a-virus:Monitor.Win32.Perflogger.1630.10
13not-a-virus:RiskTool.Win32.HideWindows0.09
14Email-Worm.Win32.Bagle.fj0.09
15Trojan-Spy.Win32.Banker.anv0.09
16Net-Worm.Linux.Ramen0.09
17Email-Worm.Win32.Brontok.q0.09
18Virus.Win32.Parite.b0.08
19Backdoor.IRC.Acnuz0.08
20Backdoor.IRC.Mimic0.07
Other malicious programs92.11
Source: Kaspersky Lab, 2006

ClickZ Live Toronto Twitter Canada MD Kirstine Stewart to Keynote Toronto
ClickZ Live Toronto (May 14-16) is a new event addressing the rapidly changing landscape that digital marketers face. The agenda focuses on customer engagement and attaining maximum ROI through online marketing efforts across paid, owned & earned media. Register now and save!*
*Early Bird Rates expire April 17.

ABOUT THE AUTHOR

Enid Burns

COMMENTSCommenting policy

comments powered by Disqus

Get ClickZ Email newsletters delivered right to your inbox. Subscribe today!

COMMENTS

UPCOMING EVENTS

Featured White Papers

ion Interactive Marketing Apps for Landing Pages White Paper

Marketing Apps for Landing Pages White Paper
Marketing apps can elevate a formulaic landing page into a highly interactive user experience. Learn how to turn your static content into exciting marketing apps.

eMarketer: Redefining Mobile-Only Users: Millions Selectively Avoid the Desktop

Redefining 'Mobile-Only' Users: Millions Selectively Avoid the Desktop
A new breed of selective mobile-only consumers has emerged. What are the demos of these users and how and where can marketers reach them?

Jobs

    • Contact Center Professional
      Contact Center Professional (TCC: The Contact Center) - Hunt ValleyLooking to join a workforce that prides themselves on being routine and keeping...
    • Recruitment and Team Building Ambassador
      Recruitment and Team Building Ambassador (Agora Inc.) - BaltimoreAgora, www.agora-inc.com, continues to expand! In order to meet the needs of our...
    • Design and Publishing Specialist
      Design and Publishing Specialist (Bonner and Partners) - BaltimoreIf you’re a hungry self-starter, creative, organized and have an extreme...