Google CAPTCHA breakage leads to increase in spam

By Roger on March 7, 2008 2:50 PM | | Comments (0) | TrackBacks (0)

MessageLabs Intelligence report for February 2008 reports that " 4.6% of all spam originates from the major web mail-based services and the proportion of spam from Google increased two-fold from 1.3% in January to 2.6% in February."

They speculate that this increase in Google spam occurred because hackers have recently compromise Google's CAPTCHA. A CAPTCHA is used to prevent automated account registrations by spam bots. Yahoo and Hotmail's CAPTCHA method was previously compromised.

Mail from the major webmail services (Google, Yahoo, and Hotmail) are from legitimate servers, and domain key signed or have a SPF record. A spam filter then can only act on the content of the message and not the reputation of the sender.

Spammers are in it for the money and they aren't going to slow their attack. Webmail providers need to continue to work to be good Internet citizens and prevent their servers from being part of the problem.

Tags

0 TrackBacks

Listed below are links to blogs that reference this entry: Google CAPTCHA breakage leads to increase in spam.

TrackBack URL for this entry: http://www.infosecblog.org/mt-tb20071121.pl/696

Leave a comment

Powered by Ajax Comments

About this Entry

This page contains a single entry by Roger published on March 7, 2008 2:50 PM.

More JAVA Updates was the previous entry in this blog.

The Case of the New DC and the LM Hash is the next entry in this blog.

Find recent content on the main index or look in the archives to find all content.

Subscribe to feed Subscribe to this blog's feed
Add to Google
Please contact me by leaving a comment where appropriate. Otherwise, you can click here to reveal an email address for me.
Got Backups? Get Safe Online Remember Rick Rescorla Powered by Movable Type 4.2-en

Search