RSS Alerts

Share

More services

Related Stories

  • US tops the spam origination charts
    Spam origination research just released claims that the US hit the top slot in the second quarter of 2010, and the UK rose to number four – from number nine in the last quarter.
  • Obfuscated Javascript malware making a comeback
    The latest monthly threat landscape report from IT security vendor Fortinet asserts that obfuscated Javascript attacks are starting to hit internet users again.
  • Security expert cautions on hidden Javascript tweets
    Rik Ferguson, senior security advisor with Trend Micro, has uncovered a potentially serious Javascript security attack on users of the Twitter microblogging service.
  • Spammers getting lazier says Symantec
    Some rather amusing news comes our way today courtesy of Symantec, and it does not bode well for the creative prowess of spammers. It appears that one of May’s hottest spam trends was blank email subject lines according to the company’s latest “State of Spam & Phishing” report.
  • Taking Down a Botnet
    This past February, Microsoft, along with industry partners and academic researchers, spearheaded an effort to take the Waledec botnet offline. Drew Amorosi provides a detailed account of just how the cooperative endeavor was able to halt – at least temporarily – the notorious spam serving network.

Top 5 Stories

News

Google Postini team highlights increase in email JavaScript attacks

20 July 2010

Research complied through the Google Postini email security and archiving service shows that obfuscated JavaScript attacks have surged as of late, prompting the team to take steps that identify and filter out this type of spam.

Data posted to the official Google blog by Adam Hollman and Gopal Shah of the Google Postini services team revealed a marked 16% increase in spam volume during Q2 of this year when compared with Q1 2010.

In addition, virus traffic increased slightly, by 3%, in Q1 vs. Q2. The data from Google, however, showed an astounding 260% increase in year-over-year virus traffic for Q2. “These trends tell us that spammers are still extremely active, and their botnets produce high levels of spam and virus traffic”, wrote the duo in their blog posting.

Another intriguing find by Google revolves around spam message size. The Postini team said that spam message size increased by 35% from Q1 to Q2 of this year, which “points to the fact that spammers are sending more image-based spam, as well as viruses as attachments”.

Hollman and Shah also said that trends gleaned from the Google Postini data show a recent surge in obfuscated JavaScript attacks via email, which are a special “hybrid between virus and spam messages”. These messages take the form of non-delivery report (NDR) emails; however, they contain hidden JavaScript.

“In some cases, the message may have forwarded the user’s browser to a pharma site or tried to download something unexpected, which is more virus-like”, noted the Google team. “Since the messages contained classic JavaScript [that] generates code, the messages could change themselves and take multiple forms, making them challenging to identify”.

To reassure customers who use the popular Postini email service, the Google team said that its spam filters had a jump on receiving these messages and the company has updated its anti-spam engine to identify obfuscated JavaScript and quarantine the messages.

This article is featured in:
Malware and Hardware Security

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Terms & Conditions |Privacy |Website Design|Reed Exhibitions. All rights reserved. Copyright © 2012