Tag: Spam
Word of the Week: Phishing
This week's Word of the Week is Phishing. What exactly does it involve and how can you prevent unsuspecting people from becoming victims of it? According to Wikipedia, phishing is the criminally fraudulent process of attempting to acquire sensitive information such as usernames,passwords and credit card details by masquerading as a trustworthy entity in an electronic communication. Communications purporting to be from popular social web sites, auction sites, online payment processors or IT administrators are commonly used to lure the unsuspecting public. (Aug 26, 2010)
“You can’t fix stupid”
HostExploit people named Demand Media the worst ISP in the world because of the number of botnet control centers they host and the sheer volume of junk that spews from its network. They reportedly host an estimated 7,400 infected websites. (Aug 19, 2010)
The 6 major trends for Email Security companies: ignore these at your risk!
There are currently very large forces at play in our industry. The issues, technology, competition, infrastructure, deployment and market are changing at such a rate that will leave many companies behind, while creating enormous opportunities for others. (Aug 13, 2010)
Stop Social Spam on Twitter
My last article was on stopping and getting rid of Comment and Registration spam on WordPress. Today, I’d like to cover another Social Spam topic: Twitter. You can bet all social networks are a target, and Twitter is no different. Here are a couple tips to minimize and get rid of the Twitter spam such as Direct Message (DM) spam. (Aug 03, 2010)
Spear Phishing: Is Your Boss a Whale?
Spear and whale phishing 1have been around for a while now, but recent social engineering efforts are focusing more on company executives. An example is this type of email: it certainly looks legit at first glance; even the phone number and address – right down to the floor number – are correct. But take a closer look at the URL used in the links: the real site has no relation to puzzlejs-mailing.com. (Jul 29, 2010)
My spam is different from your spam!
The type of spam you receive depends on many things, including your behavior on the net, how you use your email address, your position in a company and much more. As a software company executive I receive a very particular stream, one that is probably very different than what most people receive. Well, at least that's what our Security Operations team tells me. (Jul 22, 2010)
Surfing on Web 2.0: Where Innovation Meets Cybercrime
Yesterday, I logged into Facebook. I usually never use my account there (I am not a Facebook fan), but once in a while I’ll spend some time on it. For the first time, after entering my credentials, a “security” page appeared stating that unusual activities have been witnessed on my account. I then had to answer some questions, choose the names of some tagged friends, and reset my password. I have no idea what happened or how my account got compromised. (Jul 20, 2010)
Get rid of Social Spam on WordPress (Comment & Registration Spam)
The hot topic of the past few years certainly has been Social Networking and the Web 2.0! So, you started a blog on your own domain, have spent a lot of time writing relevant quality content, performing SEO, integrating into social networks to distribute your news. Now, your site is starting to get decent exposure from Search Engines and Social Networks, traffic is building up and so is spam. This damn spam. After being spammed for years through email, now you also get it on your blog. Of course, spammers have identified this new source. It offers basically the same potential as email (and actually an even better potential), so they want to be there as well. There is spam whose purpose is SEO (improve backlinks), some others are about phishing, identity theft, or malware. Let's see how to get rid of all this noise once and for all. (Jul 16, 2010)
Sex, pills & scams
These three words reflect 90% of the spam traffic for May-June 2010. Between fake Twitter emails and classic Nigerian 419, there was a rise of new phishing attempts using .html attachment files. (Jul 15, 2010)
Organized Cybercrime
A month ago I read a fascinating book called McMafia 1by Misha Glenny 2. Glenny, a former BBC world correspondent, presents a terrifying yet eye opening look at how organized crime has progressed with Globalization over the last few decades. Glenny covers all the major illicit activities from global drug trafficking networks, to prostitution and human trafficking. One chapter in particular is dedicated to the future of organized crime and the fastest growing sector, cybercrime. (Jul 13, 2010)
Who’s responsible for Internet Security?
A couple of stories in the news today caught my attention because they have very opposite perspectives on tackling cybercrime and Internet security. First, the Australian government is thinking of making home computer users responsible for security1. They’re contemplating legislation to force users to install anti-virus programs and firewalls on their home computers before being allowed to connect to the Internet. (Jun 23, 2010)
Honest, I don’t want an email security appliance!
Vendors have their own very special reasons for pushing email security appliances, instead of virtual machines or straight software installations. You may find that their reasons do not always align with your own. (Jun 14, 2010)
Interview with Adam Guerbuez: $873 Million Dollar Man
"I need a one way ticket to Tijuana!" You might think that if something happens and you want to escape. But if you live in Canada, just sit back and relax - you have nothing to worry about. Canada is known for their lazy laws for certain types of crimes, especially "new" ones (like the latest incidents of financial fraud and spam). (Jun 07, 2010)
May Email Security News: New Undersea Cables Feed African Botnets
Email Security Industry news from May 2010 with commentary (May 31, 2010)
Here come the spam police
The German courts may have just opened the floodgates. Their top criminal court ruled this week that home wireless users can be held responsible for not password-protecting their wireless connections. If the unprotected connection is used for illegal file downloads, the owner can be fined up to 100 Euros (currently $126). (May 17, 2010)
Most Common Support Issue: Whitelist = Spoofed Spam
No one likes to see spam in their Inbox, especially when it comes from themselves! Users often get confused and even worry that their identity has been stolen. The main cause for this is that they have whitelisted their own email address to bypass scanning for outbound traffic. Users do not realize (or understand) that spammers can spoof their email address and send spam that appears to be from themselves. (May 14, 2010)
Facebook or Faceblock? Facebook implementing their own ‘email security’?
Facebook is coming under scrutiny (again!), this time about their email scanning policies. Most of you are probably in the email security industry and are well aware that any email security solution will scan a message to divert or block spam, phishing, etc. (May 12, 2010)
Think you don’t spam? Think again!
Who has never sent email spam? Maybe you wanted to promote something, contact friends or relatives you never really emailed before (at least with a normal email), send a chain letter that promised success and money or to promote a garage sale using your local hockey team email list? Maybe you sent a message for your business using a large contact list grabbed on a corporate email with a multitude of CC’d addresses? Or did you ‘borrow’ the customer list from work for your own use? (Oh, that’s bad!) (May 05, 2010)
April Email Security News: McAfee update error impacts many systems
A summary of links to articles that I have found interesting in the last few weeks. Includes my own commentary. (Apr 30, 2010)
Six items often overlooked when purchasing an email security solution
As discussed in an earlier post , the battle against spam is an ongoing one and requires you to do your due diligence when selecting an email security solution to protect one of your business’ most important assets: email. (Apr 26, 2010)
