Media releases are provided as is by companies and have not been edited or checked for accuracy. Any queries should be directed to the company itself.

Cash for emails - script kiddies use spam to make their fortunes

  • 18 August, 2004 14:37

<p>• Money the prime motivator as viruses and spam converge
• 63.5% of all email during the first six months of 2004 was spam
• Over 1.5 million phishing emails intercepted
• Spyware makes its first appearance in the spam attack arsenal</p>
<p>Sydney. 17th August 2004. The first half of 2004 has been dominated by the convergence of different email security attack methods, with financial gain the prime motivation, according to a report covering January – June 2004 published today by MessageLabs, the leading provider of managed email security services to businesses.</p>
<p>The MessageLabs Intelligence Email Security Report analyses email security trends and developments during the first six months of 2004. Research from the company indicates that the virus and spam landscapes have changed substantially: virus writing ‘script kiddies’ are now teaming up with spammers to produce a more sophisticated breed of email security threat.</p>
<p>In addition, MessageLabs data shows that since January 2004, the majority of the viruses intercepted by MessageLabs on behalf of its 8500 customers have been found to have the potential for spam distribution, including the MyDoom, NetSky and Bagle viruses.</p>
<p>An analysis of the email traffic intercepted by MessageLabs between January and June 2004 reveals massive growth of spam and virus levels in comparison with the same period in previous years:</p>
<p>* 63.5 per cent (1 in 1.57) of all emails scanned by MessageLabs were identified as spam – up from 37.9% (1 in 2.6) during the same period in 2003 and just 1.5% in 2002 (1 in 67).
* One in every 12 emails scanned by MessageLabs (8.3%) contained a virus, up from 1 in 208 in 2003 (0.5%) and 1 in 392 in 2002 (0.3%).</p>
<p>David Banes, Asia Pacific Technical Director at MessageLabs, comments:</p>
<p>“The boundaries between viruses and spam have been eroded, and commercial gain would seem to be the driving force. There is little or no profit to be gained from simply distributing viruses, but when you consider the income that can be earned from spam you have an altogether more attractive proposition.</p>
<p>“The script kiddies who were once content with causing chaos and enjoying their fifteen minutes of fame have realised spam’s potential earning power. They are using their virus writing capabilities to hijack computers and create networks of zombie machines that send millions of spam emails. The preferred method of spamming is now via these botnets and the industry will pay big bucks to hire them out, so it has become cool to spam.”</p>
<p>The phishing phenomenon, which has now occurred on every major English-speaking continent but was largely unheard of this time last year, has also continued in earnest. While MessageLabs intercepted just 14 phishing-related emails in August 2003, so far 2004 has seen the average number detected each month hit about 250,000, with a peak in January of 337,000.</p>
<p>These online fraud scams involve the use of viruses, spam, spoofed websites and other social engineering techniques. Again the intent is financial gain: by duping computer users into entering personal details on fraudulent websites the perpetrators defraud organisations and their customers out of considerable sums of money.</p>
<p>In June MessageLabs also announced that spammers have started using spyware as a way of tailoring spam towards its victims.</p>
<p>Banes concludes: “The convergence of spyware and spam is just the latest milestone in the evolution of spamming techniques, as spammers, virus writers and hackers are combining their techniques in an attempt to increase the efficiency of email security attacks.</p>
<p>“Data obtained from MessageLabs’ records for the first half of 2004 clearly indicates that the complexity and scale of the threat has moved on and, correspondingly, companies need to make sure that the security protection they have in place has developed as well. First generation, software-based solutions have failed to evolve and one of the most logical places to deploy protection is at the internet level, where known and unknown threats can be eliminated before they reach the network boundary.”</p>
<p>Note to Editors: Full copies of the MessageLabs Intelligence Email Security Report January–June 2004 are available to be downloaded from the website:</p>
<p>About MessageLabs</p>
<p>MessageLabs is the leading provider of managed email security services to businesses worldwide. The company currently protects more than 8,500 businesses worldwide from email threats such as viruses, spam and other unwanted content before they reach their networks and without requiring additional hardware or software. Powered by a global network of control towers that currently spans Australia, the United States, the United Kingdom, Hong Kong, Singapore, Germany, Belgium and the Netherlands, MessageLabs scans tens of millions of emails a day on behalf of customers such as QBE Insurance, Virgin Blue, Sanitarium, SunWater, Voyages Hotels and Resorts, Mandarin Oriental Hotels, The British Government, Fujitsu, The Bank of New York, Conde Nast Publications, StorageTek, Daiwa, EMI Music and Diageo.</p>
<p>For more information on MessageLabs and its industry-leading email security and management services, please visit</p>
<p># # #</p>
<p>For local information or an interview, please contact:</p>
<p>David Banes, MessageLabs Sydney
Phone: (02) 9409 4307 or 0411-747 821
Nick Hawkins, MessageLabs Asia Pacific
Phone: (852) 2111 3655 or 0405 774 802

Most Popular