Spam report: volumes rising again

Submit

Spammers knocked offline two weeks ago when their hosting company, McColo, was shut down are finally coming back online, security researchers said this week.

(Credit: MessageLabs)

California-based McColo was believed to be responsible for up to 75 per cent of all spam, according to The Washington Post.

Spam volumes, which dropped about 80 per cent when McColo was shut down on November 11, remained relatively flat since then until a few days ago when they started climbing up, said Matt Sergeant, senior anti-spam technologist at MessageLabs, now owned by Symantec.

Since Sunday, the spam volume has risen to about 37 per cent of what they were before McColo was unplugged, MessageLabs said.

McColo was hosting command and control servers that were being used to send instructions — like send spam or Trojans — to bot software that had been planted on PCs, mostly in the US, according to Sergeant. "With no work orders to process, the machines simply stopped spamming," he said.

Some of the botnets, with names like "Srizbi," "Asprox," "Rustock," and "Mega-D," are back up after connecting to different domains, Sergeant said. Some are connecting to ISPs outside the US, which will make it very difficult to shut them down again, he said.

"The problem now is that it was a lot easier to get a US-based ISP shut down than it will be to get, for example, this Estonian ISP shut down," Sergeant said.

"We've stunted the spammers for a couple of weeks, which is a good thing for the internet," he said. "We've increased their costs and, hopefully, that might put some spammers out of business."

Researchers are collaborating on the matter and providing information to US law enforcement agencies, said Paul Ferguson, an advanced threat researcher at Trend Micro. Some of the bots are programmed to connect to a new domain after a certain amount of time of inactivity, he said.

Researchers have been able to get some registrars to suspend some domains being used and have filed abuse complaints with some ISPs that appear to be unwitting hosts, Ferguson added.

Talkback

ZDNet Australia Live

Research key to good apps: Westpac CIO http://t.co/dbB5FwZD

1 minute ago by ForshawFlip on twitter, retweet

NSW Government To Open Shop Front in Silicon Valley - http://t.co/3w4OACT4 - other states should follow this lead! #zdnet #gov20

1 minute ago by mwyres on twitter, retweet

Research key to good apps: Westpac CIO http://t.co/pWnqpGfY

6 minutes ago by JamesVickery on twitter, retweet

Westpac goes paperless http://t.co/7R3qW02B

11 minutes ago by NZAndyParker on twitter, retweet

ZDNet Australia: Research key to good apps: Westpac CIO - http://t.co/P25sl1t8

11 minutes ago by FrontPageAdword on twitter, retweet

Research key to good apps: Westpac CIO - ZDNet Australia http://t.co/q2fxIL37

16 minutes ago by GoogleTechAUS on twitter, retweet

Research key to good apps: Westpac CIO - ZDNet Australia http://t.co/Pdf4RQXG

16 minutes ago by GoogleTechAUS on twitter, retweet

Research key to good apps: Westpac CIO - ZDNet Australia: Research key to good apps: Westpac CIOZDNet AustraliaW... http://t.co/JfGDCCud

21 minutes ago by MobileAppsTrain on twitter, retweet

Research key to good apps: Westpac CIO - Business - News - ZDNet Australia http://t.co/gxuA3C01

21 minutes ago by MobileAppsTrain on twitter, retweet

CIOview Research key to good apps: Westpac CIO - ZDNet Australia http://t.co/jRacRqbU

26 minutes ago by CIOview on twitter, retweet

iPad news: Research key to good apps: Westpac CIO - ZDNet Australia http://t.co/coXq00rx

26 minutes ago by iPadfans on twitter, retweet

RT @zdnetaustralia Westpac: knowing the device and a user's behaviour is key to developing a good app: http://t.co/o5GXQhGj ^LH

26 minutes ago by hanezawakirika on twitter, retweet

Westpac: knowing the device and a user's behaviour is key to developing a good app: http://t.co/1FxHn0kT ^LH

26 minutes ago by zdnetaustralia on twitter, retweet

Research key to good #apps: #Westpac CIO http://t.co/0T0xmWfl #mobile #android #iphone

26 minutes ago by mobilerelevance on twitter, retweet

surprised that #DHS labelled BYOD immature. i'm thinking the "for us" is a closer reflection of market readiness http://t.co/4cLnsFiE

31 minutes ago by petercarrceo on twitter, retweet

SAP eyes #cloud super network with Ariba buy: SAP America is looking to develop "the business network of the fut... http://t.co/t3a2MOGj

36 minutes ago by HP_CTO_APJ on twitter, retweet

by http://t.co/vmlLt4bh: Research key to good apps: Westpac CIO: Westpac announced yesterday that it has over a m... http://t.co/ua2LT4xZ

36 minutes ago by InternetTechSec on twitter, retweet

RT @Maynardcomau: I missed this story on the ABC website http://t.co/uBoQw8mh

36 minutes ago by Maynardcomau on twitter, retweet

Research key to good apps: Westpac CIO http://t.co/KFfxHxDO

36 minutes ago by Cloud9Truths on twitter, retweet

Research key to good apps: Westpac CIO: Westpac announced yesterday that it has over a million users actively si... http://t.co/QAGGwpWu

41 minutes ago by NewsinIT on twitter, retweet

Research key to good apps: Westpac CIO - ZDNet Australia: Research key to good apps: Westpac CIOZDNet AustraliaW... http://t.co/JJ9mYDXF

41 minutes ago by Netchannel2 on twitter, retweet

RT @zdnetaustralia: SuccessFactors launches Sydney datacentre to host BizX suite for local customers http://t.co/xKvbJnNj ^ST

41 minutes ago by jonabonne on twitter, retweet

RT @zdnetaustralia: SAP buys Ariba http://t.co/cQy8nVWp ^ST

51 minutes ago by jonabonne on twitter, retweet

SuccessFactors launches Sydney datacentre - Hardware - News - ZDNet Australia | @scoopit http://t.co/B7cK54tF

51 minutes ago by PuneetSingh77 on twitter, retweet

Research key to good apps: Westpac CIO: Westpac announced yesterday that it has over a million users actively si... http://t.co/0b9GEFrY

51 minutes ago by oztechguy on twitter, retweet

SuccessFactors launches Sydney datacentre to host BizX suite for local customers http://t.co/xKvbJnNj ^ST

56 minutes ago by zdnetaustralia on twitter, retweet

SuccessFactors launches #Sydney datacentre - @ZDNet Australia : http://t.co/qyzZ4zZN

1 hour ago by SydneyNews on twitter, retweet

@Wow - thats one of the benefits of the iPad (and tablets in general). They are one of the most generation neutral products ever made. ...

1 hour ago by Gav on Westpac board goes paperless with iPads

by http://t.co/vmlLt4bh: Kaspersky's antivirus denied on iOS: Kaspersky Lab is the latest company to be denied th... http://t.co/GpQkVZ2C

1 hour ago by InternetTechSec on twitter, retweet

A farewell to democracy: Kaspersky http://t.co/VAIQbbXY

1 hour ago by ALLsecuritySoft on twitter, retweet

@mikey_halapir http://t.co/VOegcFoc FOUND IT.

1 hour ago by f0r3v3ryoung_ on twitter, retweet

Android's biggest security flaws http://t.co/00YQDw9T

1 hour ago by ALLsecuritySoft on twitter, retweet

SuccessFactors launches Sydney datacentre http://t.co/wdofhAGS

1 hour ago by ForshawFlip on twitter, retweet

#DataCentre SuccessFactors launches Sydney datacentre - ZDNet Australia: SuccessFactors launches Sydney datacent... http://t.co/ajyQKEPL

1 hour ago by AITPartnership on twitter, retweet

SuccessFactors launches Sydney datacentre - ZDNet Australia: SuccessFactors launches Sydney datacentreZDNet Aust... http://t.co/VpHzoKJc

1 hour ago by SydneyConnectme on twitter, retweet

Kaspersky is now yet another company that Apple won't let make an official AV app for iOS. http://t.co/E0CsunQ1

1 hour ago by mukimu on twitter, retweet

and why is this such a super idea? http://www.itnews.com.au/News/301778,thousands-affected-in-billing-cloud-breach.aspx oh, yeah, right...

1 hour ago by btone on Fed Govt steps up on shared cloud plan

Wow, seems like a fantastic initiative that helps to save the environment. It must have taken a lot of convincing to get the Board to mov...

2 hours ago by Wow on Westpac board goes paperless with iPads

I'm a payed up lib member who has voted Labor in the last 2 federal elections. I had the previlege of speaking to Mr Turnball 3 months ag...

2 hours ago by spazmanaught on NBN contracts may be left alone: Turnbull

Good to see Westpac's concentrating on the real IT issues !

2 hours ago by jeff_syd on Westpac board goes paperless with iPads

I am not sure how this issue becomes an attack on Mr Turnbull. But I guess he is fair game. In any event I would have thought a Ddos woul...

13 hours ago by Doubt on National Botnet Network coming: Earthwave

I still use 98SE. Windows ME was an abortion in a bucket and Vista was ME without the bucket. My screen may look boring, but I jumped str...

13 hours ago by Treknology on Microsoft admits Vista was 'cheesy'

This story has been voted 10 times in the last 24 hours!

13 hours ago, CeBIT 2012 opens: photos

This story has been voted 15 times in the last 24 hours!

14 hours ago, Lenovo ThinkPad 3G tablet (32GB)

Well I don't know what they have done with their EFTPOS machines, local one in WA Coles Express I used this morning and I normally do "ch...

14 hours ago by harryinthesoup on Coles ditches PINs in payment pilot

6.7 M last ditch attempt - interesting - The Auckland region (population 1.4 mil) has estimated to have spent less than this in total ...

17 hours ago by debsteele on Vic scraps HealthSMART system

Interesting - no mention of Win 98/ME/2000 ... which heralded Internet access for millions of users ? I thought Win 98/ME would be the mo...

18 hours ago by gouranga on Microsoft admits Vista was 'cheesy'

An Application like Good from Good Technologies does the same thing, working with the enterprise email server and is off the shelf.

18 hours ago by Helpdesk123 on Westpac board goes paperless with iPads

Never mind a "B+" version, go for "C" and put in a few extras. I'd like a high speed ADC (100Msps) but that's just me... Final size? Equ...

19 hours ago by sa_penguin on Raspberry Pi architect mulls design change

what a non-story. these thing happen all the time. is zdnet short on material?

20 hours ago by paulwrussell on Spotify launch suffers redirect bungle

4 months old phone died. Took 6 weeks, three visits to the authorised repairer (Fonebiz) to "fix it". 2nd hand untested parts used, I say...

20 hours ago by paracin on Sony Ericsson Xperia Arc S

It's easy to rubbish an old operating system long after the rest of the world has already passed judgement upon it. I would be far more i...

21 hours ago by ramnet on Microsoft admits Vista was 'cheesy'

If Vista is cheesy, Metro is an over-ripe Stilton.

21 hours ago by meski on Microsoft admits Vista was 'cheesy'

you are kidding right - what qualification do you have to make such wildy stupid statements - do you really have customers who pay you fo...

22 hours ago by rant rant rant on National Botnet Network coming: Earthwave

Exactly. There are two topics of discussion, that are co-mingled; 1) Unauthorized software was put on the company device, by an IT person...

1 day ago by lamont on ABC's Bitcoin miner tackled in minutes

First off, Bitcoin is not a virus. Second off, the only way to generate Bitcoins, is by using a Bitcoin miner. More information on this h...

1 day ago by rizowski on ABC's Bitcoin miner tackled in minutes

When an operating system is sold it should not launch until an approved security service is purchased online with a list of approved supp...

1 day ago by Kevin Cobley on National Botnet Network coming: Earthwave

Keep up with ZDNet Australia

Inside ZDNet Australia

ZDNet / Email / Story

Spam report: volumes rising again

Topics

Top related stories

Related gallery

Related stories

Talkback

Resource Centre Useful content from our premier sponsors

ZDNet Australia Live

Facebook Activity

Keep up with ZDNet Australia

ZDNet Events Calendar

Plan Comparison

Sponsored resources

Inside ZDNet Australia

Services