Is the Worst Over, or Has it Even Begun?


If you’ve been plagued by spam and you’ve had enough, you’re not alone. Spammers are branching out into campaign-type attacks that utilize multiple platforms to lure in new targets. They’ve been doing it for some time now, but it appears that, just as we hone our skills while we ferret spam out and deposit it in the trash folder, spammers are getting more adept at their craft, and that can’t be a good thing.

Of great concern is the continued high level of spam traffic. It still hovers around 70% and we cheer when we discover that it’s dropped to 68%, as if a statistically small decline is at least a moral victory. As much as we want to buy-in when we read an article about the war on spam and how it’s being won, it really isn’t. Any decline in overall traffic is almost imperceptible on a practical level, and while we often choose to ignore the obvious, the landscape has become far more dangerous, a minefield laden with malware and phishing techniques that make IT admins very nervous.

Have we gotten better at spotting spam? Sure. Have we become more adept at recognizing the risks and dangers? Yes. Have we managed to identify the attacks and intercept them before they occur, and have we become masters of dealing with the attacks after they hit? Well, now the landscape becomes murkier.

Take, for example, a couple of stories from 2013.

In June, the German education ministry made news when it was reported that the ministry discovered 170 PCs and servers infected with Conficker. Now, we all know that Conficker was probably co-developed by Satan and Justin Bieber. It’s just that evil. But evil or not, there are plenty of ways to deal with a situation like that, and what did the German education ministry do? Well, the obvious choice. It replaced the computers with new ones. According to The Register, the decision cost German taxpayers €187,300 (£158,291). Now, is this a case of overreaction? You decide. But it seems awfully troubling at best, and at worst disturbing, that the only way we can handle infections is to destroy the host.

In February, a telecom company called Telecom (yes, really) made tech news when its users were hit with a massive spam attack. The New Zealand based firm licensed the Yahoo! XTra service for its email users and over a very short period of time 87,000 users were bombarded with spam emails. It was particularly malicious, too. According to 3News, “just getting the email gives hackers access to the recipient’s contacts, which means spam can then be sent to them as well, regardless of which email provider they’re with.” And “security expert Martin Crocker pointed out that “If people have received an email and clicked on a link, their computer could be infected with malware, depending on the security of their machine when they clicked on that link.”” So what did Telecom do? It cancelled 60,000 user passwords. And it did so without really…uhm, I don’t know…telling anyone.

And if that wasn’t enough, the beleaguered company was hit again in November, and this time the company went a little further, locking out the affected accounts and ‘recommending’ that users change their passwords. It wasn’t really a recommendation, since it was mandatory. Now, you can feel for Telecom all you want, and we do, too. But this story is newsworthy because of  TUANZ, the Telecommunications Users Association of New Zealand. Not really a users’ group, at least not in the way we understand, the industry association backed its member Telecom, with TUANZ chief Paul Brislen blaming the users (the PC users) for not reacting after the February incident. And as if he didn’t know when to keep his mouth shut, according to Radio New Zealand he went as far as saying “spam cannot be stopped and it’s vital customers change their passwords frequently.”

‘Spam cannot be stopped.’ Finally! Someone has thrown in the towel. We can all go home now and stop worrying about it.

Whether or not Mr. Brislen’s insight is true, that defeatist attitude is just the type of thinking that takes the air out of the efforts of those who wage war on spam on a daily basis. We’ve got work to do. Like it or not, Blackhole is here to stay, and botnets rage on. Phishers continue to hone their skills, and spam gets more dangerous. Have we seen the worst yet? Probably not. Why? Because there’s money to be made.

Leave a Reply