Welcome to WebmasterWorld Guest from 50.19.34.234

Forum Moderators: incrediBILL & lawman

Message Too Old, No Replies

Spam Botnet Ring Shut Down By F.T.C

     

engine

2:06 pm on Oct 15, 2008 (gmt 0)

WebmasterWorld Administrator engine is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month Best Post Of The Month



Spam Botnet Ring Shut [nytimes.com]Down By F.T.C
The Federal Trade Commission won a preliminary legal victory against what it called one of the largest spam gangs on the Internet, persuading a federal court in Chicago on Tuesday to freeze the group’s assets and order the spam network to shut down.
The group, which used several names but was known among spam-fighting organizations as HerbalKing, sent billions of unsolicited messages to Internet users over the last 20 months, promoting replica watches and a variety of pharmaceuticals, including weight-loss drugs and herbal pills that supposedly enhanced the male anatomy, according to the commission.

“This is pretty major. At one point these guys delivered up to one-third of all spam,” said Richard Cox, chief information officer at SpamHaus, a nonprofit antispam research group.

Gomvents

2:11 pm on Oct 15, 2008 (gmt 0)

10+ Year Member



Good, let's get China, Russia, and Brazil on board as well and we can cut down the overwhelming bulk of spam!

jeyKay

2:42 pm on Oct 15, 2008 (gmt 0)

5+ Year Member



Maybe thats why I seemed to have less emails this morning in my inbox. lol

amznVibe

3:06 pm on Oct 15, 2008 (gmt 0)

WebmasterWorld Senior Member 10+ Year Member



Are they actually selling the product themselves or is someone hiring them to send out the spam for the 3rd party's product? Because you need to go after the people paying them or other spammers will just rise up in their place.

SEOMike

3:27 pm on Oct 15, 2008 (gmt 0)

WebmasterWorld Senior Member 10+ Year Member



Hopefully these were the guys hammering my email server. Each month this year I've had a couple of days where my server is slammed by 1200 messages per minute. Totally chokes my NOC because it's not setup for that kind of load. They used one of the company email addresses as a "from" address so tons of bounced / failed messages were being returned to my server instead of theirs. The spam was all about watches. I think I'll try to contact someone involved in the case.

np2003

4:20 pm on Oct 15, 2008 (gmt 0)

10+ Year Member



Very good news. I hate spammers! Bill Gates said there was going to be no spam by now, what went wrong!

koan

4:32 pm on Oct 15, 2008 (gmt 0)

WebmasterWorld Senior Member 10+ Year Member



Guantanamo Bay would be too good for these people.

pageoneresults

5:12 pm on Oct 15, 2008 (gmt 0)

WebmasterWorld Senior Member pageoneresults is a WebmasterWorld Top Contributor of All Time 10+ Year Member



Excellent find engine!

"It wouldn't be a surprise if people don’t notice any difference in their in-box tomorrow morning."

I think that sums it up. That was the very last line of the post. ;)

incrediBILL

8:50 pm on Oct 15, 2008 (gmt 0)

WebmasterWorld Administrator incredibill is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month



the group’s Mega-D botnet — named after one of its pill products — was made up of 35,000 computers and could send 10 billion e-mail messages a day.

No mention of whether they actually disabled the 35K machines in the botnet.

So they stopped one spammer yet the botnet is just waiting for another bot herder to come along and take control of the botnet, which happens all the time.

Temporary reprieve is all we got.

AlienDev211

12:38 pm on Oct 16, 2008 (gmt 0)

5+ Year Member



that is awesome, That actually excites me... I deal with about 20+ email accounts and all 20 have their own set of spam ranging from 1000+ when i get here in the morning. and today and yesterday was only a handful. I had more time.. i don't know what to do with all the extra time... eh, oh well...

piatkow

3:30 pm on Oct 16, 2008 (gmt 0)

WebmasterWorld Senior Member piatkow is a WebmasterWorld Top Contributor of All Time 5+ Year Member



Last time I saw a "botnet shut down" news item my spam went down for about 3 days.

The answer is to jail the advertisers as well as the spammers.

piatkow

9:57 am on Oct 17, 2008 (gmt 0)

WebmasterWorld Senior Member piatkow is a WebmasterWorld Top Contributor of All Time 5+ Year Member



No significant change in the list of quarentined spam in my email this morning.

mcneely

8:40 am on Oct 26, 2008 (gmt 0)

10+ Year Member Top Contributors Of The Month



Most of the spam we would get nailed with never sees our inboxes. Turn them around at the server mates, send the spam they sent to you right back at them, or their DC's, if you can.

If more people would send spam back to where it came from, instead of throwing it down a black hole, the DC's and web hosts of this world would do a better job of ridding the net of it.

g1smd

9:54 am on Oct 26, 2008 (gmt 0)

WebmasterWorld Senior Member g1smd is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month



How to you identify where it [really] came from?

The "From" address is usually fake. That's why the guy above was receiving 1200 bounces per day for mail that he didn't actually send.

I never bounce this stuff. It goes into a black hole.

mcneely

4:59 pm on Oct 26, 2008 (gmt 0)

10+ Year Member Top Contributors Of The Month



Sure, that is if you choose to use the info placed into forged headers to do your bounce.

Email addresses don't mean a thing, so bouncing by way of them would only serve to defeat the purpose.

Mail servers can be configured to log the originating ip, and the hops it took, from one machine to the next, in order to get to you, so this is what you use.

Of course, upon after configuring your mail server to log originating ip's, you would then do well to learn how to read the mail headers themselves, in order to more effectively return the mail from whence it came.

Though you may not, at times, provide the bounce directly to the spammer, no worries ... most bounces go to the host of the client spammer automagically, thus, putting the host on the spot for change.

Here we would have the spammer's host, getting the spam that was originally intended for you, after which, the client spammer would get a boot to the head from their host.

 

Featured Threads

Hot Threads This Week

Hot Threads This Month