homepage Welcome to WebmasterWorld Guest from 54.161.192.61
register, free tools, login, search, pro membership, help, library, announcements, recent posts, open posts,
Pubcon Platinum Sponsor 2014
Home / Forums Index / Local / Foo
Forum Library, Charter, Moderators: incrediBILL & lawman

Foo Forum

    
Spam Botnet Ring Shut Down By F.T.C
engine

WebmasterWorld Administrator engine us a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month Best Post Of The Month



 
Msg#: 3766110 posted 2:06 pm on Oct 15, 2008 (gmt 0)

Spam Botnet Ring Shut [nytimes.com]Down By F.T.C
The Federal Trade Commission won a preliminary legal victory against what it called one of the largest spam gangs on the Internet, persuading a federal court in Chicago on Tuesday to freeze the group’s assets and order the spam network to shut down.
The group, which used several names but was known among spam-fighting organizations as HerbalKing, sent billions of unsolicited messages to Internet users over the last 20 months, promoting replica watches and a variety of pharmaceuticals, including weight-loss drugs and herbal pills that supposedly enhanced the male anatomy, according to the commission.

“This is pretty major. At one point these guys delivered up to one-third of all spam,” said Richard Cox, chief information officer at SpamHaus, a nonprofit antispam research group.


 

Gomvents

5+ Year Member



 
Msg#: 3766110 posted 2:11 pm on Oct 15, 2008 (gmt 0)

Good, let's get China, Russia, and Brazil on board as well and we can cut down the overwhelming bulk of spam!

jeyKay

5+ Year Member



 
Msg#: 3766110 posted 2:42 pm on Oct 15, 2008 (gmt 0)

Maybe thats why I seemed to have less emails this morning in my inbox. lol

amznVibe

WebmasterWorld Senior Member 10+ Year Member



 
Msg#: 3766110 posted 3:06 pm on Oct 15, 2008 (gmt 0)

Are they actually selling the product themselves or is someone hiring them to send out the spam for the 3rd party's product? Because you need to go after the people paying them or other spammers will just rise up in their place.

SEOMike

WebmasterWorld Senior Member 10+ Year Member



 
Msg#: 3766110 posted 3:27 pm on Oct 15, 2008 (gmt 0)

Hopefully these were the guys hammering my email server. Each month this year I've had a couple of days where my server is slammed by 1200 messages per minute. Totally chokes my NOC because it's not setup for that kind of load. They used one of the company email addresses as a "from" address so tons of bounced / failed messages were being returned to my server instead of theirs. The spam was all about watches. I think I'll try to contact someone involved in the case.

np2003

10+ Year Member



 
Msg#: 3766110 posted 4:20 pm on Oct 15, 2008 (gmt 0)

Very good news. I hate spammers! Bill Gates said there was going to be no spam by now, what went wrong!

koan

WebmasterWorld Senior Member 5+ Year Member



 
Msg#: 3766110 posted 4:32 pm on Oct 15, 2008 (gmt 0)

Guantanamo Bay would be too good for these people.

pageoneresults

WebmasterWorld Senior Member pageoneresults us a WebmasterWorld Top Contributor of All Time 10+ Year Member



 
Msg#: 3766110 posted 5:12 pm on Oct 15, 2008 (gmt 0)

Excellent find engine!

"It wouldn't be a surprise if people don’t notice any difference in their in-box tomorrow morning."

I think that sums it up. That was the very last line of the post. ;)

incrediBILL

WebmasterWorld Administrator incredibill us a WebmasterWorld Top Contributor of All Time 5+ Year Member Top Contributors Of The Month



 
Msg#: 3766110 posted 8:50 pm on Oct 15, 2008 (gmt 0)

the group’s Mega-D botnet — named after one of its pill products — was made up of 35,000 computers and could send 10 billion e-mail messages a day.

No mention of whether they actually disabled the 35K machines in the botnet.

So they stopped one spammer yet the botnet is just waiting for another bot herder to come along and take control of the botnet, which happens all the time.

Temporary reprieve is all we got.

AlienDev211

5+ Year Member



 
Msg#: 3766110 posted 12:38 pm on Oct 16, 2008 (gmt 0)

that is awesome, That actually excites me... I deal with about 20+ email accounts and all 20 have their own set of spam ranging from 1000+ when i get here in the morning. and today and yesterday was only a handful. I had more time.. i don't know what to do with all the extra time... eh, oh well...

piatkow

WebmasterWorld Senior Member piatkow us a WebmasterWorld Top Contributor of All Time 5+ Year Member



 
Msg#: 3766110 posted 3:30 pm on Oct 16, 2008 (gmt 0)

Last time I saw a "botnet shut down" news item my spam went down for about 3 days.

The answer is to jail the advertisers as well as the spammers.

piatkow

WebmasterWorld Senior Member piatkow us a WebmasterWorld Top Contributor of All Time 5+ Year Member



 
Msg#: 3766110 posted 9:57 am on Oct 17, 2008 (gmt 0)

No significant change in the list of quarentined spam in my email this morning.

mcneely

10+ Year Member



 
Msg#: 3766110 posted 8:40 am on Oct 26, 2008 (gmt 0)

Most of the spam we would get nailed with never sees our inboxes. Turn them around at the server mates, send the spam they sent to you right back at them, or their DC's, if you can.

If more people would send spam back to where it came from, instead of throwing it down a black hole, the DC's and web hosts of this world would do a better job of ridding the net of it.

g1smd

WebmasterWorld Senior Member g1smd us a WebmasterWorld Top Contributor of All Time 10+ Year Member



 
Msg#: 3766110 posted 9:54 am on Oct 26, 2008 (gmt 0)

How to you identify where it [really] came from?

The "From" address is usually fake. That's why the guy above was receiving 1200 bounces per day for mail that he didn't actually send.

I never bounce this stuff. It goes into a black hole.

mcneely

10+ Year Member



 
Msg#: 3766110 posted 4:59 pm on Oct 26, 2008 (gmt 0)

Sure, that is if you choose to use the info placed into forged headers to do your bounce.

Email addresses don't mean a thing, so bouncing by way of them would only serve to defeat the purpose.

Mail servers can be configured to log the originating ip, and the hops it took, from one machine to the next, in order to get to you, so this is what you use.

Of course, upon after configuring your mail server to log originating ip's, you would then do well to learn how to read the mail headers themselves, in order to more effectively return the mail from whence it came.

Though you may not, at times, provide the bounce directly to the spammer, no worries ... most bounces go to the host of the client spammer automagically, thus, putting the host on the spot for change.

Here we would have the spammer's host, getting the spam that was originally intended for you, after which, the client spammer would get a boot to the head from their host.

Global Options:
 top home search open messages active posts  
 

Home / Forums Index / Local / Foo
rss feed

All trademarks and copyrights held by respective owners. Member comments are owned by the poster.
Home ¦ Free Tools ¦ Terms of Service ¦ Privacy Policy ¦ Report Problem ¦ About ¦ Library ¦ Newsletter
WebmasterWorld is a Developer Shed Community owned by Jim Boykin.
© Webmaster World 1996-2014 all rights reserved