United States Top Culprit As Spam Becomes More Malicious

IT security and data protection firm Sophos has published the latest ‘Dirty Dozen’ of spam-relaying countries, covering the fourth quarter of 2010. The United States increased its lead at the top spot, and continues to be responsible for nearly one in five junk e-mails -- 18.83 percent of all spam messages.

The U.S.’s domination of the list underlines the continuing problem of computers being compromised by hackers in the country, allowing them to be remotely controlled for criminal purposes without the owners’ knowledge.

The UK decreased its percentage of total spam output compared to the third quarter last year -- from 5 percent to 4.54 percent -- however, it remains in fifth place overall.

Sophos notes that, while the same countries continue to dominate in terms of spam output, the nature of the spam being distributed is becoming more malicious. Traditional subject matter such as advertisements for pharmaceuticals continue to be a concern, with some 36 million Americans reported to purchase drugs from unlicensed online sellers -- but more and more messages are spreading malware and are attempting to phish user names, passwords and personal information.

The Top 12 Spam-relaying Countries, October to December 2010:

  1.  Unites States                    18.83 percent
  2.  India                                    6.88 percent
  3.  Brazil                                   5.04 percent
  4.  Russia                                4.64 percent
  5.  UK                                        4.54 percent
  6.  France                                 3.45 percent
  7. Italy                                        3.17 percent
  8. South Korea                        3.01 percent
  9. Germany                              2.99 percent
  10. Vietnam                                2.79 percent
  11. Romania                              2.25 percent
  12. Spain                                    2.24 percent
     
    Other                                    40.17 percent

Sophos warns that there has also been an increase in more focused, targeted email attacks, known as “spearphishing.” In addition to this, Sophos is continuing to receive an increased number of reports of malicious apps, compromised profiles and unwanted messages spreading across social networks such as Facebook and Twitter.

“Spam is certainly here to stay, however, the motivations and the methods are continuing to change in order to reap the greatest rewards for the spammers,” said Graham Cluley, senior technology consultant at Sophos. “What’s becoming even more prevalent is the mailing of links to poisoned webpages – victims are tricked into clicking a link in an email, and then led to a site that attacks their computer with exploits or attempts to implant fake anti-virus software.”

For Q4 2010, Europe decreased its overall percentage of relayed spam messages compared to Q3 2010.

Top Spam-relaying Continents, October to December 2010:

  1. Europe                        32.11 percent
  2. Asia                             31.89 percent
  3. North America           22.38 percent
  4. South America          10.25 percent
  5. Africa                             2.12 percent

“Regardless of what methods spammers use, Internet users should never be tempted to open a spam message out of curiosity, or click on an unknown link, just because it appears on a Facebook friend’s profile,” Cluley said. “Internet users need to become aware of these new approaches to cybercrime as the spamming techniques become more and more sophisticated. As long as spammers continue to make money from these schemes, Internet users can be sure that they’ll continue to receive unsolicited e-mails and social networking scams. To combat this, it’s essential that computer users remain wary of clicking on unknown links, regardless of whether they appear to be on a trusted contact’s social networking page.”

Sophos recommends that companies automatically update their corporate virus protection, and run a consolidated solution at their email and web gateways to defend against spam and viruses. Home users are advised to defend their computers with virus protection, to prevent becoming part of a botnet used for the purposes of sending spam.

Further information about the latest Dirty Dozen report can be found on Sophos’s Naked Security site at: http://nakedsecurity.sophos.com/2011/01/11/report-reveals-the-dirty-dozen-top-spam-relaying-countries/.

 

Featured

  • Gaining a Competitive Edge

    Ask most companies about their future technology plans and the answers will most likely include AI. Then ask how they plan to deploy it, and that is where the responses may start to vary. Every company has unique surveillance requirements that are based on market focus, scale, scope, risk tolerance, geographic area and, of course, budget. Those factors all play a role in deciding how to configure a surveillance system, and how to effectively implement technologies like AI. Read Now

  • 6 Ways Security Awareness Training Empowers Human Risk Management

    Organizations are realizing that their greatest vulnerability often comes from within – their own people. Human error remains a significant factor in cybersecurity breaches, making it imperative for organizations to address human risk effectively. As a result, security awareness training (SAT) has emerged as a cornerstone in this endeavor because it offers a multifaceted approach to managing human risk. Read Now

  • The Stage is Set

    The security industry spans the entire globe, with manufacturers, developers and suppliers on every continent (well, almost—sorry, Antarctica). That means when regulations pop up in one area, they often have a ripple effect that impacts the entire supply chain. Recent data privacy regulations like GDPR in Europe and CPRA in California made waves when they first went into effect, forcing businesses to change the way they approach data collection and storage to continue operating in those markets. Even highly specific regulations like the U.S.’s National Defense Authorization Act (NDAA) can have international reverberations – and this growing volume of legislation has continued to affect global supply chains in a variety of different ways. Read Now

  • Access Control Technology

    As we move swiftly toward the end of 2024, the security industry is looking at the trends in play, what might be on the horizon, and how they will impact business opportunities and projections. Read Now

Featured Cybersecurity

Webinars

New Products

  • A8V MIND

    A8V MIND

    Hexagon’s Geosystems presents a portable version of its Accur8vision detection system. A rugged all-in-one solution, the A8V MIND (Mobile Intrusion Detection) is designed to provide flexible protection of critical outdoor infrastructure and objects. Hexagon’s Accur8vision is a volumetric detection system that employs LiDAR technology to safeguard entire areas. Whenever it detects movement in a specified zone, it automatically differentiates a threat from a nonthreat, and immediately notifies security staff if necessary. Person detection is carried out within a radius of 80 meters from this device. Connected remotely via a portable computer device, it enables remote surveillance and does not depend on security staff patrolling the area. 3

  • Unified VMS

    AxxonSoft introduces version 2.0 of the Axxon One VMS. The new release features integrations with various physical security systems, making Axxon One a unified VMS. Other enhancements include new AI video analytics and intelligent search functions, hardened cybersecurity, usability and performance improvements, and expanded cloud capabilities 3

  • Camden CV-7600 High Security Card Readers

    Camden CV-7600 High Security Card Readers

    Camden Door Controls has relaunched its CV-7600 card readers in response to growing market demand for a more secure alternative to standard proximity credentials that can be easily cloned. CV-7600 readers support MIFARE DESFire EV1 & EV2 encryption technology credentials, making them virtually clone-proof and highly secure. 3