Mapping the Spam

demaria writes "The folks at cluelessmailers.org have made a map of spam. It shows the relationships among spammers and other entities (legitimate or not), including organizations that track spam, advertises with, shares addresses, emails through, and all sorts of other data. I can't imagine how hard it was to put this together, it looks like a giant circuit design layout, but shows just how big and interwoven the spam problem is."

Map of Spam

[CaffeineAddict2001]

The country of spam is surrounded by the "White Gelatin Coast", it is divided into various sovereign mystery meat nations. How this country was formed is unknown and best left a mystery.

When I first read the story title...

[dmarien]

I got this sick feeling of joy, and the hairs on the back of my stood up... Maps to the companies which send out spam?

I'm driving to each and every one of em, and hurling bricks through their windows...

errr wait...

Re:When I first read the story title...

[Phrogman]

Place a note on each brick stating "This is not an unsolicited brick, according to US Statue..."

:D

Re:Spam will be gone, in 100 years.

[Amazing+Quantum+Man]

. I wonder if we can use this map to somehow take out spam.

Sorry dude, but nuking spammers doesn't work.

Where's the Asian spammers?

[tshoppa]

It's a fascinating site, a really cool map.

But where are all the Asian spammers? I'd guesstimate that I get 30 or 40 foreign-language spams apparently from Taiwan, Malaysia, and India every day. It's more than half of all the spam I get now.

Re:Where's the Asian spammers?

[Hollinger]

I get a bunch of these too.
What's sad about this is that I've figured out the korean characters for "advertisement," by trial and error, and automatically filtered all that junk out of my mail.

Re:Where's the Asian spammers?

[Anne+Thwacks]

After spending £400,000 on research, I can now reveal that "They are in Asia",

WIth a big enough research grant, I might be able to uncover more details.

Re:Where's the Asian spammers?

[ceejayoz]

Or, if you can't read oriental languages, you could do it the easy way and just block any e-mail with oriental characters in them...

Re:Where's the Asian spammers?

[CMBob]

Well, I had to start somewhere...

Like the Map says, it's by no means a complete picture. I just started with one email, then another, and began finding connections.

Asian stuff generally gets nuked immediately; I rarely even bother reporting it anymore.

*sigh*

...Bob

Bob West
Clueless Mailers Webmaster

attention script kiddies, hackers, crackers, etc

[paradesign]

alright men (or otherwise) heres the battleplan,
you have the map,
weve located the enemy,
now take them out!

do it for the good of the net, and may the Force be with you.

Damn, that's some map!

[FreeLinux]

Not only is it huge. Not only is it /.ed. But, it also made X11 run my CPU utilization up to a steady 97%.

Re:Good job /.!

[cetan]

Well, I'm happy to give up some bandwidth for these guys, it's a cool map. Here's a mirror.

http://www.cetan.com/mirrors/spammap.html

No need to mod me up, I'm not a karma whore.

Re:Too complicated

Simple version:

Greedy Idiots --> Internet --> You

mirror, mirror, on the wall

[tedtimmons]

This site was pretty slow to respond- probably because the gif on that page is about 1MB.

So I've mirrored it.

-ted

It's a palindrome

[squarefish]

spam maps

Re:Good job /.!

[DustMagnet]

So why didn't you provide a link like this overview or like this smaller version or even a google cache.

It seems to me, that you comment is really extra lame.

This map is incomplete

[dbc001]

The map is incomplete - I don't see Bernard Shifman on there anywhere

Thanks!

[AtariDatacenter]

I forwarded it to all my coworkers, plus a few people that I don't know, but I have their email address. ;)

Re:Spam problem

[Zeinfeld]

Claude Shannon proved decades ago that noise is inevitable in communications.

He did no such thing. Shannon's law demonstrates that the information bearing capacity of a communication line is limited by the signal to noise ratio.

It is quite amusing to see how such basic observations are transmorgaphied by the game of Internet chinese whispers.

Spam will be addressed as a problem as soon as the pain barrier becomes high enough. With PKI it is possible to identify an email sender by means of a digital signature. The current problem being that there is no good way to locate public keys bound to email addresses. There is a lot of good work going on in this area, in particular the W3C XKMS group recently discussed a working draft that describes a mechanism for accessing public keys via DNS SRC records.

So under this system what would happen is that when you get email from them the email client would scan your address book to see if they were on your approved sender's list. This would probably include the individuals you know (Cmdr. Taco etc.) and also whole domains (ai.mit.edu) you might trust. if the mail is not in the list it goes into the 'low priority' pile.

There are email clients that do this at the moment but the spammers are using counter measures, such as scanning email list archives and sending out SPAM with fake sender addresses taken from the archive. With PKI and a means of determining whether the person actually has a public key or not this type of filtering becomes much more robust. Incidentally the mechanism does not require S/MIME to work, it can also be used with PGP.

To deploy the solution all we need to do is to persuade email client writers to support XKMS register and locate functions and ISPs to provide XKMS services along with their existing SMTP server. Oh yes and finish the XKMS spec I guess.

Brilliant! Hacktivism!

[toupsie]

I agree. Instead of pinging and scanning my servers 24/7, go after the real assholes of the Internet. Script Kiddies, you have the tools, you have the time, you have the disregard for the law, do something worthwhile for a change.

I mapped SPAM once...

[huckda]

Turned out to look like 2 pieces of white bread with Miracle Whip spread on them, along with 2 pink colored, slightly rectangular shapes about 1cm think...unfortunately there is no screenshot or url to link to because the mapping was consumed shortly after constructed.

--Huck

Re:He thinks the problem is spam

[fishbowl]

"I can't imagine how hard it was to put this together, it looks like a giant circuit design layout, but shows just how big and interwoven the spam problem is."

Truly spoken by someone who has never seen a sexchart.

Re:Spam problem

[Zathrus]

There is no way to "fix the spam problem".

There certainly isn't if you're fatalistic and don't look for solutions.

Claude Shannon proved decades ago that noise is inevitable in communications

Ignoring the abundant misunderstanding of Shannon's research (hey, go read here and you'll already know more thant he poster), to call spam noise on the data network is an amazing stretch. Spam is not noise. Spam is data. If you took the spam off the network some other crap that nobody wanted wouldn't magically fill the spot.

I also deeply question your off-the-cuff nlogn value for spam. Let's just take my Hotmail account as an example. It receives roughly 200 spam emails a day. They average 8k each. So that's 1.6MB of spam per day per user. Now, there's 118 million Hotmail accounts. Assume that a mere 1% of them get this much spam. That's 1,888,000 MB of spam. Daily. To Hotmail alone. That's nearly 2 terabytes of capacity. Daily .

Now lets start throwing in Yahoo! mail, AltaVista mail, juno, excite, etc. etc. etc. and start counting numbers. It's scary. Very, very scary.

If anyone can actually provide real numbers for how much bandwidth is consumed by spam, please do. I did a Google search a couple weeks ago and came up empty. Lots of sites referring to it consuming "great amounts of bandwidth", but no hard numbers.

how to avoid getting on The Map

[happyclam]

OK, /., here's a question for you:

I'm not a real network geek (just a regular joe programmer), but recently my email address has been co-opted by a spammer. That is, I've received spam from my own email address. (I of course did NOT send it.)

The question is, how can a regular joe like me prevent this from happening in the future so my domain does not appear on some future version of The Map? I know about the guy who hacked into the spammer's laptop and got all their personal information, but I don't have the skills or access for that.

Re:how to avoid getting on The Map

[BoVLB]

[M]y email address has been co-opted by a spammer. That is, I've received spam from my own email address.

Many spammers now seem to put the recipient as the From address. Presumably this helps the mail to avoid certain filters. So in all probability, you're the only one being spammed from your address.

Re:Spam problem

[fmaxwell]

Spam is not "noise". It is e-mail abuse. It is not randomly caused by electromagnetic or other interference. It purposely injected into the e-mail stream. It contains specific messages and is delivered to specificied recipients. You act like it is some kind of natural phenomenon. It's not.

Claude Shannon said that communications channels have a source of noise (i.e., interference or distortion) which changes the message in unpredictable ways during transmission. What a spammer sends to me does not change other messages in unpredictable ways. It does not distort other messages. Spam is simply a source of unwanted messages.

If we stop complaining, we reduce the cost of spamming and it increases. Period.

Kevin Bacon

[Static242]

Did anyone see Kevin Bacon's name on that map? I bet you could draw a link through association to him. Once that is done the map will be complete. Then we will know that Kevin controls that too.

Joe-job

[KjetilK]

Don't worry, anti-spammers are used to this happening, it happens all the time, and people are getting good at knowing when it has happened. In fact, if somebody does it really bad against you, you should be honored, because it means that you really annoyed a spammer. It's a called a joe-job. It's happened to me too. Somebody sent a pr0n-spam in my name.

Re:Spam problem

[pjrc]

... when you get email from them the email client would scan your address book to see if they were on your approved sender's list.

That's nice if you only communicate with people you already know. Not so good if you have a public website, a company, or you participate in public forums (like slashdot) and people you do not yet know will make contact with you.

Re:Quit Moderating My Posts!!! Please!

[toupsie]

I just got moderated overrated, underrated and funny in one go. In my book, that qualifies as spam.

You think that is bad. I just "Trolled" myself according to a moderator on the parent post.

privacy policies

[Aanallein]

Looking at some of the blocks on that map with most arrows poiting to them, I visited those websites and looked at their privacy policies.
I wonder why they even bother having them, but it's a nice way to inform us of everything being done.

For example: eScriptions.net:

eScriptions.net reserves the right to post collected data on eScriptions.net's Web site, or share, rent, sell, or otherwise disclose data it collects to third parties. Any third party to which eScriptions.net shares, rents, sells, or otherwise discloses personal data will be carefully prescreened by eScriptions.net, determined by eScriptions.net to be reputable, and will use the personal data for marketing products and services which eScriptions.net determines, in its sole judgment, that visitors might find of interest.

virtumundo.com:

The Company may receive information about individuals from third parties or from other sources of information outside of the Company including information located in public databases

THE COMPANY MAY USE INDIVIDUAL INFORMATION FOR ANY LEGALLY PERMISSIBLE PURPOSE IN COMPANY'S SOLE DISCRETION. <snip> the Company may change or broaden its use at any time.

THE COMPANY MAY SELL OR TRANSFER INDIVIDUAL INFORMATION TO THIRD PARTIES FOR ANY PURPOSE IN COMPANY'S SOLE DISCRETION.

I particularly like the way they go through excruciating trouble to explain "webbugs" though:

(b) Webbugs. A webbug is programming code that can be used to display an image on a web page (by using an programming function -- see www.www.org for more information), but can also be used to transfer an individual's unique user identification (often in the form of a cookie) to a database and associate the individual with previously acquired information about an individual in a database. This allows Company to track certain web sites an individual visits online. Webbugs are used to determine products or services an individual may be interested in, and to track online behavioral habits for marketing purposes. For example, Company might place, with the consent of a third party website, a webbug on the third party's website where fishing products are sold. When Joe, an individual listed in Company's database, visits the fishing website, Company receives notice by means of the webbug that Joe visited the fishing site, and Company would then update Joe's profile with the information that Joe is interested in fishing. Company may thereafter present offers of fishing related products and services to Joe. In addition to using webbugs on web pages, Company also uses webbugs in email messages sent to individuals listed in Company's database.

*pats his Mozilla that displays html mails as plain text and will not load remote images in mail and news (two seperate functions)*

Re:This is interesting:

[Erik+Fish]

From what I've read Rackspace has been cleaning up their act recently. I don't know that they've fully graduated from black to greyhat, but something is better than nothing...