Hidden Messages in Spam

randomwalker writes "There was an extremely interesting presentation at the Blackhat Windows Security Conference in January by Dr Curtis Kret entitled Nobody's Anonymous. In his presentation he showed how information about spammers can be determined. In addition he showed that some spam is being used as a covert communication channel. This presentation demonstrates how to apply data forensics to spam in order to identify the sender of specific spam messages. Some senders can be identified by name, while others can be distinguished by attributes such as preferences, nationality, religion, and even left-handedness. Four spam categories are provided that classify spam by function, including List Makers, Scams, and Covert Communication channels. The examples provided include full-disclosure case studies: a phishing gang that targets bank customers with malware and impersonations, and an IRC group that uses spam as a covert communication channel."

Sublime!

This post contains a hidden message.

Re:Sublime!

[Brian+Boitano]

Here, I've outlined it for everyone:

This "First post" contains a hidden message.

Re:Sublime!

[momerath2003]

Well, this is what I see:

"There was an extremely interesting fnord presentation at the Blackhat fnord Windows fnord Security Conference in January by Dr Curtis Kret entitled fnord Nobody's fnord Anonymous. In his presentation he showed how information about fnord spammers can be determined. In addition he showed that some fnord spam is being used as a fnord covert communication channel. This presentation demonstrates how to apply data forensics to spam fnord in order to identify the sender of specific fnord spam messages. Some fnord senders can be identified by name, while others can be distinguished by attributes such as preferences, fnord nationality, religion, and even left-handedness. Four fnord spam categories are provided that classify spam by function, including fnord List Makers, fnord Scams, and fnord Covert Communication channels. The examples provided include full-disclosure case studies: a fnord phishing fnord gang that targets fnord bank customers with fnord malware and fnord impersonations, and an IRC group that uses spam as a fnord covert fnord communication channel."

Re:Sublime!

[Bigbutt]

Well, this is what I see:

This post contains a hidden message.

So. It's what I see too. What's your point?

Re:Sublime!

[momerath2003]

Redundant?!? So you really can't see the fnords?

Wow. And I thought that the global Illuminati conspiracy was fiction. Dang. I guess I know better now.

Re:Sublime!

[rezulir]

Newbie alert. I am seeing that there are posts that say there is a microdot in the message. I am completely lost on this. Is it a joke I am too green to get, or is there some stegonography (sp?) going on? Any serious reply would be appreciated.

Re:Sublime!

Wikipedia's Microdot entry

Re:Sublime!

[shfted!]

So in this story, inserting fnord! into a post wouldn't be a troll?

Re:Sublime!

Has anyone actually been able to read the PDF? I cannot read it, because it appears to be corrupted?

If anyone happens to want to put up a link that works, please do so... I don't know of anyone who can read this file.

The next thing ...

[jobbegea]

The next thing they try to sell to you will be Tin Foil Hats

Re:The next thing ...

[baudilus]

Someone's already beaten you to the punch.

When this guy figures out that he can actually sell these, watch out now!

Re:The next thing ...

[ZigiSamblak]

That's the problem with being honest... He's not going to get rich quick like this:

BEWARE OF COMMERCIAL AFDBS: Since you should trust no one, always construct your AFDB yourself to avoid the risk of subversion and mental enslavement. Sometimes, AFDBs will be sold on places like eBay. Do not purchase these pre-made AFDBs, even if the seller seems trustworthy. They may contain backdoors, pinholes, integrated psychotronic circuitry or other methods that actually promote mind control.

Re:The next thing ...

[Greedo]

Don't wear them if you live in Sicily, though!

Re:The next thing ...

[alien+at+large]

Or a covert communication channel. But will you ever know?

make world, not war

font size.

[Stud1y]

i like the new spam that has all of the size .5 font text at the bottom. i always have to read it.

Spam = Covert communications

Are they covertly talking about getting V!agra or Cia|is? I hate that. Just send me a real letter asking!

Re:Spam = Covert communications

[sqlrob]

umm, that could be encryption.

Nothing says that the output has to be binary.

Re:Spam = Covert communications

[AndroidCat]

So they have a covert communication channel to my /dev/null? I knew it! I'd better buy that software that promises to shred everything stored there.

Re:Spam = Covert communications

[Mantrid]

Seriously it is a good point - if you are filtering Viagra or other words spelled correctly, obviously you are not interested in those products - so there is nothing to be gained by trying to "sneak" these ads into your box!

Re:Spam = Covert communications

[Frizzle+Fry]

Because it might not be you personally who decided to filter the word viagra. For example, if your using a hotmail or yahoo account, that word is going to make the mail more likley to be flagged as spam and go to your "bulk mail" folder (I would think). Similarly, you might have installed a third-party spam filter (or your isp or workplace might be using one) that looks for words like this. The fact that "viagra" mail isn't going to reach the enduser doesn't mean that he has personally decided to kill all mail to his account about viagra.

Hidden food value in spam?

[Smallpond]

The Bible code was bad enough. Now we have people looking for messages in spam? Look! Played backwards it says "I buried Paul".

Re:Hidden food value in spam?

[bhima]

Nope! it just says "cranberry sauce"

Re:Hidden food value in spam?

The problem with the bible code is that the Hebrew language has words with far too many meanings. Along with words that are also numbers which can then be interpreted as dates. Not only that you add in a few more calendars (Roman, Jewish, etc) then you have a few more possibilities for a match. I find it interesting that they insist on testing the vailidity of the bible code against modern texts written in English apposed to other accient texts also written with Hewbrew as the native toungue. I think they would find that the Bible code is not nearly as valid once you take into consideration the nature of the Hebrew language.

Re:Hidden food value in spam?

[pe1rxq]

But what does 'ecuas yrrebnarc' mean?

Jeroen

Re:Hidden food value in spam?

All the important stuff is hidden in the Dead Sea pop-ups.

Re:Hidden food value in spam?

[Bigman]

"Ecuas Yrrebnarc" is well known as the freedom slogan of the Latbavarian slaves, cried mournfully in the midst of the night from the moon-gilt slopes of the Ytterbrius mountains, calling for their gods to save them from the penuary of slavery.
But I never knew they had e-mail!

Re:Hidden food value in spam?

[yulek]

sounds like cthulhu to me... which of course means you're already dead and The Old Ones are coming to get me shortly.

ciao... :(

Re:Hidden food value in spam?

[corbettw]

Ah, everyone knows playing sounds backwards has no effect.

Re:Hidden food value in spam?

[fgb]

Contrary to what it says in "The Bible Code" these kind of results can be, and have been easily replicated in any book in any language.

This is especially true when you consider the technique used. They started with a target phrase (i.e. a phrase they were hoping was "hidden" in the text) consisting of words that are located reasonably close to each other in the bible. Then they start looking at every other word, then every third word, and all sorts of other patterns until the words "lined up" and they declared they found a match.

It would be almost impossible to NOT find whatever "hidden message" you are looking for using this method.

Re:Hidden food value in spam?

As far as I can see is that the text they used to check for the Bible Code was written in Hebrew and as such only had constants written. I haven't checked it out, but I suspect that the words that interlace, or the original words, may have different vowels (some day I'll check this effect of adding niqudot to the results of the Bible Code).

Re:Hidden food value in spam?

I'd like to point out that this isn't spam. The end of Strawberry Fields (a well known Beatles song), IIRC, had Lennon repeating 'cranberry sauce' a few times. To some, it sounded like 'I buried Paul'.

Usenet Spam also

[SpaceLifeForm]

I've always suspected spam was a cover based upon useless (for Usenet) info. The TLA agencies should know about this also.

Re:Usenet Spam also

[b0z0mind]

The TLA's do know about this

Identity Theft

If you can analyze someones caracteristics then you could emulate them so to put the blame on the wrong person.

All technology have good and bad uses

hidden message

[Allowee]

guess this is spammers language, hidden in spam

"mortal shut acrid crock cowl bawd hereditary devastate jellyfish brunette flog igor bonaparte tarry townsend discordant near aviv brigantine agnostic padlock cotangent roomy referee debater eve arlene can baroque conceptual italian congressmen infelicity modicum backplane antigen tie hilum seriate convent firewall "

Now this hidden message seems to be about a .. firewall?

Re:hidden message

[Bigman]

Hmm well dividing the message into groups of four, then using the initials of the first 3 words and the fourth word, we get:
MS a crock,
CB H devastate,
JBF Igor,
BTT discordant,
Nab agnostic
PCR referee
DEA can
BCI congressman
IMB antigen
THS convent
firewall

So the words say 'Firewall convent antigen, Congressman can referee agnostic discordant, Igor devastate Crock'. The first sentance says 'MS A crock' which sounds good to me, so maybe this secret group, the 'Firewall convent antigen' are being told by the congressman that they can referee the discord between the agnostic discordants and ensure 'Igor' (whoever that is) devestates Microsoft.

Or maybe I'm making it all up!

Re:hidden message

[OwlWhacker]

It could be about releasing chemicals in the sea, hence the reference to "devastate jellyfish". Man, when your eyes are open to the hidden things it's amazing what you can find.

Re:hidden message

Not that I would know from experience or anything...

But the gibberish at the bottom (or top or middle) of SPAM is intended to get it by Major Corporate SPAM Filters.

Apparently, the filters check to see if there are a lot of identical messages coming from one place / address. If there are, it starts bouncing them all.

The SPAMmer answer is to include changing gibberish in each message so they are no longer identical. Same goes for your subject lines:

Bi V!agrrra gfkl309dsj

The last piece changes for every message to make the subject unique.

Ah, the fun of the SPAM wars...

That's Mr. Coward to you!

Re:hidden message

[protohiro1]

This gibberish is always in spam to fool filters, but it could easily be used to send secure messages.

Secret messages in spam

Of course, there is spammimic which lets you encode a secret message in spam.

Re:Secret messages in spam

[cgenman]

Dear Friend , Your email address has been submitted
to us indicating your interest in our newsletter .
We will comply with all removal requests . This mail
is being sent in compliance with Senate bill 1623 ,
Title 1 ; Section 305 . This is different than anything
else you've seen ! Why work for somebody else when
you can become rich as few as 51 MONTHS . Have you
ever noticed people will do almost anything to avoid
mailing their bills and nearly every commercial on
television has a .com on in it ! Well, now is your
chance to capitalize on this ! WE will help YOU process
your orders within seconds & decrease perceived waiting
time by 170% ! The best thing about our system is that
it is absolutely risk free for you . But don't believe
us . Ms Simpson who resides in Massachusetts tried
us and says "My only problem now is where to park all
my cars" ! We are a BBB member in good standing ! We
beseech you - act now ! Sign up a friend and you get
half off . Cheers . Dear Colleague , This letter was
specially selected to be sent to you . If you are not
interested in our publications and wish to be removed
from our lists, simply do NOT respond and ignore this
mail . This mail is being sent in compliance with Senate
bill 1622 ; Title 8 , Section 304 . THIS IS NOT A GET
RICH SCHEME ! Why work for somebody else when you can
become rich as few as 42 weeks . Have you ever noticed
nearly every commercial on television has a .com on
in it & nobody is getting any younger ! Well, now is
your chance to capitalize on this ! We will help you
sell more & deliver goods right to the customer's doorstep
! You can begin at absolutely no cost to you . But
don't believe us . Prof Ames of Florida tried us and
says "Now I'm rich, Rich, RICH" . We are licensed to
operate in all states . Because the Internet operates
on "Internet time" you must hurry . Sign up a friend
and your friend will be rich too ! Cheers .
---

Ever wonder if maybe we should be surfing at -1?

Re:Secret messages in spam

[Eklypz]

Dear Friend ; Your email address has been submitted to us indicating your interest in our newsletter . If you no longer wish to receive our publications simply reply with a Subject: of "REMOVE" and you will immediately be removed from our mailing list . This mail is being sent in compliance with Senate bill 2216 ; Title 6 ; Section 306 . THIS IS NOT MULTI-LEVEL MARKETING . Why work for somebody else when you can become rich within 56 weeks . Have you ever noticed most everyone has a cellphone plus most everyone has a cellphone . Well, now is your chance to capitalize on this . We will help you sell more and SELL MORE . You are guaranteed to succeed because we take all the risk ! But don't believe us . Mr Simpson of Kentucky tried us and says "I've been poor and I've been rich - rich is better" ! This offer is 100% legal . We IMPLORE you - act now ! Sign up a friend and you get half off ! Thanks ! Dear Friend ; You made the right decision when you signed up for our mailing list ! If you no longer wish to receive our publications simply reply with a Subject: of "REMOVE" and you will immediately be removed from our club . This mail is being sent in compliance with Senate bill 1620 , Title 6 , Section 306 . This is not multi-level marketing ! Why work for somebody else when you can become rich as few as 46 DAYS ! Have you ever noticed people love convenience plus more people than ever are surfing the web . Well, now is your chance to capitalize on this ! We will help you turn your business into an E-BUSINESS & process your orders within seconds . You can begin at absolutely no cost to you . But don't believe us . Mrs Simpson who resides in Kentucky tried us and says "Now I'm rich, Rich, RICH" . We are a BBB member in good standing ! So make yourself rich now by ordering immediately . Sign up a friend and you get half off ! Warmest regards ! Dear Friend ; We know you are interested in receiving hot intelligence ! We will comply with all removal requests ! This mail is being sent in compliance with Senate bill 1618 ; Title 2 , Section 309 . Do NOT confuse us with Internet scam artists ! Why work for somebody else when you can become rich in 52 days ! Have you ever noticed most everyone has a cellphone plus people are much more likely to BUY with a credit card than cash . Well, now is your chance to capitalize on this . We will help you increase customer response by 110% and process your orders within seconds . You can begin at absolutely no cost to you ! But don't believe us . Ms Anderson of Colorado tried us and says "My only problem now is where to park all my cars" . We assure you that we operate within all applicable laws ! You will blame yourself forever if you don't order now ! Sign up a friend and you'll get a discount of 30% ! Warmest regards ! Dear Web surfer , Especially for you - this hot intelligence ! If you are not interested in our publications and wish to be removed from our lists, simply do NOT respond and ignore this mail ! This mail is being sent in compliance with Senate bill 1618 ; Title 4 , Section 303 . THIS IS NOT A GET RICH SCHEME ! Why work for somebody else when you can become rich inside 85 weeks . Have you ever noticed people love convenience and nearly every commercial on television has a .com on in it . Well, now is your chance to capitalize on this . WE will help YOU SELL MORE and decrease perceived waiting time by 160% ! You are guaranteed to succeed because we take all the risk . But don't believe us . Mr Simpson who resides in Missouri tried us and says "Now I'm rich many more things are possible" . We assure you that we operate within all applicable laws . So make yourself rich now by ordering immediately ! Sign up a friend and you'll get a discount of 50% . Thank-you for your serious consideration of our offer !

Re:Secret messages in spam

[pragma_x]

Note to moderators: this is not a Troll, nor is parent. Encoded reply via spammimic.com:

Dear Friend , Especially for you - this red-hot intelligence
. If you no longer wish to receive our publications
simply reply with a Subject: of "REMOVE" and you will
immediately be removed from our mailing list . This
mail is being sent in compliance with Senate bill 1622
, Title 9 ; Section 308 ! This is NOT unsolicited bulk
mail . Why work for somebody else when you can become
rich as few as 40 weeks ! Have you ever noticed how
long the line-ups are at bank machines plus nearly
every commercial on television has a .com on in it
. Well, now is your chance to capitalize on this !
We will help you SELL MORE plus decrease perceived
waiting time by 120% . You can begin at absolutely
no cost to you . But don't believe us . Mrs Simpson
who resides in Alaska tried us and says "Now I'm rich
many more things are possible" . We are a BBB member
in good standing . You have no reason not to act now
! Sign up a friend and you'll get a discount of 80%
. Cheers . Dear Friend ; Especially for you - this
cutting-edge information . We will comply with all
removal requests ! This mail is being sent in compliance
with Senate bill 1621 ; Title 6 , Section 306 ! This
is not multi-level marketing . Why work for somebody
else when you can become rich inside 14 days ! Have
you ever noticed most everyone has a cellphone and
most everyone has a cellphone ! Well, now is your chance
to capitalize on this ! WE will help YOU decrease perceived
waiting time by 130% plus use credit cards on your
website . You are guaranteed to succeed because we
take all the risk . But don't believe us . Prof Ames
of Florida tried us and says "I was skeptical but it
worked for me" . We are a BBB member in good standing
! We BESEECH you - act now . Sign up a friend and you'll
get a discount of 70% ! Thanks ! Dear Friend , Especially
for you - this cutting-edge announcement ! This is
a one time mailing there is no need to request removal
if you won't want any more . This mail is being sent
in compliance with Senate bill 1620 , Title 9 ; Section
304 . This is different than anything else you've seen
! Why work for somebody else when you can become rich
inside 97 DAYS ! Have you ever noticed people will
do almost anything to avoid mailing their bills and
people are much more likely to BUY with a credit card
than cash ! Well, now is your chance to capitalize
on this . We will help you SELL MORE & SELL MORE .
You are guaranteed to succeed because we take all the
risk ! But don't believe us ! Mr Ames who resides in
Texas tried us and says "Now I'm rich, Rich, RICH"
. We assure you that we operate within all applicable
laws ! Don't delay - order today . Sign up a friend
and you get half off . God Bless .

Re:Secret messages in spam

[Ramion]

Dear Friend ; Thank-you for your interest in our publication
. If you no longer wish to receive our publications
simply reply with a Subject: of "REMOVE" and you will
immediately be removed from our club ! This mail is
being sent in compliance with Senate bill 1816 ; Title
3 ; Section 304 . This is not multi-level marketing
. Why work for somebody else when you can become rich
within 45 days . Have you ever noticed more people
than ever are surfing the web & people love convenience
! Well, now is your chance to capitalize on this .
We will help you SELL MORE and SELL MORE ! The best
thing about our system is that it is absolutely risk
free for you ! But don't believe us . Mr Anderson of
New Hampshire tried us and says "I was skeptical but
it worked for me" ! This offer is 100% legal . You
will blame yourself forever if you don't order now
. Sign up a friend and you'll get a discount of 60%
! God Bless . Dear Salaryman , Especially for you -
this cutting-edge news . This is a one time mailing
there is no need to request removal if you won't want
any more . This mail is being sent in compliance with
Senate bill 2416 , Title 9 , Section 309 . This is
different than anything else you've seen ! Why work
for somebody else when you can become rich inside 64
weeks ! Have you ever noticed how many people you know
are on the Internet and nobody is getting any younger
! Well, now is your chance to capitalize on this !
We will help you use credit cards on your website plus
SELL MORE . You can begin at absolutely no cost to
you . But don't believe us ! Mrs Jones of Oklahoma
tried us and says "Now I'm rich many more things are
possible" . We assure you that we operate within all
applicable laws . Do not delay - order today ! Sign
up a friend and you get half off . Warmest regards
. Dear Decision maker ; Especially for you - this red-hot
announcement . This is a one time mailing there is
no need to request removal if you won't want any more
. This mail is being sent in compliance with Senate
bill 2616 , Title 4 , Section 302 . THIS IS NOT A GET
RICH SCHEME . Why work for somebody else when you can
become rich inside 52 MONTHS . Have you ever noticed
how many people you know are on the Internet and how
long the line-ups are at bank machines . Well, now
is your chance to capitalize on this ! WE will help
YOU decrease perceived waiting time by 150% plus turn
your business into an E-BUSINESS ! You can begin at
absolutely no cost to you . But don't believe us .
Mr Anderson of Missouri tried us and says "Now I'm
rich, Rich, RICH" ! This offer is 100% legal ! We implore
you - act now ! Sign up a friend and you'll get a discount
of 20% . Thanks .

Re:Secret messages in spam

[fgb]

Dear Professional , Especially for you - this cutting-edge
intelligence . We will comply with all removal requests
. This mail is being sent in compliance with Senate
bill 1816 ; Title 4 , Section 301 ! Do NOT confuse
us with Internet scam artists . Why work for somebody
else when you can become rich within 26 DAYS . Have
you ever noticed people will do almost anything to
avoid mailing their bills and nobody is getting any
younger ! Well, now is your chance to capitalize on
this . WE will help YOU use credit cards on your website
& deliver goods right to the customer's doorstep .
You are guaranteed to succeed because we take all the
risk . But don't believe us ! Mrs Anderson who resides
in California tried us and says "I was skeptical but
it worked for me" ! We assure you that we operate within
all applicable laws ! We urge you to contact us today
for your own future financial well-being ! Sign up
a friend and you'll get a discount of 50% . Thank-you
for your serious consideration of our offer . Dear
Cybercitizen ; Thank-you for your interest in our briefing
. If you are not interested in our publications and
wish to be removed from our lists, simply do NOT respond
and ignore this mail . This mail is being sent in compliance
with Senate bill 2516 , Title 3 ; Section 306 ! THIS
IS NOT A GET RICH SCHEME . Why work for somebody else
when you can become rich as few as 64 months ! Have
you ever noticed people will do almost anything to
avoid mailing their bills plus people are much more
likely to BUY with a credit card than cash . Well,
now is your chance to capitalize on this . We will
help you use credit cards on your website plus SELL
MORE ! You can begin at absolutely no cost to you !
But don't believe us . Ms Anderson of Hawaii tried
us and says "I was skeptical but it worked for me"
! We are licensed to operate in all states ! We BESEECH
you - act now ! Sign up a friend and you get half off
! God Bless .

Re:Secret messages in spam

[cgenman]

Dear Friend , We know you are interested in receiving
red-hot announcement . If you are not interested in
our publications and wish to be removed from our lists,
simply do NOT respond and ignore this mail . This mail
is being sent in compliance with Senate bill 2016 ,
Title 3 , Section 302 ! This is not multi-level marketing
. Why work for somebody else when you can become rich
within 33 days . Have you ever noticed nearly every
commercial on television has a .com on in it and the
baby boomers are more demanding than their parents
! Well, now is your chance to capitalize on this .
WE will help YOU SELL MORE and SELL MORE ! You can
begin at absolutely no cost to you ! But don't believe
us . Ms Jones of Kentucky tried us and says "I was
skeptical but it worked for me" . This offer is 100%
legal . We implore you - act now . Sign up a friend
and you'll get a discount of 20% ! Thank-you for your
serious consideration of our offer . Dear Professional
; Especially for you - this cutting-edge information
! If you no longer wish to receive our publications
simply reply with a Subject: of "REMOVE" and you will
immediately be removed from our mailing list . This
mail is being sent in compliance with Senate bill 2416
; Title 8 , Section 305 ! This is not a get rich scheme
. Why work for somebody else when you can become rich
within 57 days . Have you ever noticed nearly every
commercial on television has a .com on in it and most
everyone has a cellphone . Well, now is your chance
to capitalize on this . We will help you SELL MORE
plus deliver goods right to the customer's doorstep
. You can begin at absolutely no cost to you . But
don't believe us . Mrs Anderson of Illinois tried us
and says "Now I'm rich many more things are possible"
! We are licensed to operate in all states ! We IMPLORE
you - act now . Sign up a friend and you get half off
! God Bless . Dear Internet user , Thank-you for your
interest in our publication ! If you are not interested
in our publications and wish to be removed from our
lists, simply do NOT respond and ignore this mail !
This mail is being sent in compliance with Senate bill
2416 ; Title 5 ; Section 304 . Do NOT confuse us with
Internet scam artists ! Why work for somebody else
when you can become rich in 11 days . Have you ever
noticed how many people you know are on the Internet
& nobody is getting any younger ! Well, now is your
chance to capitalize on this . We will help you use
credit cards on your website & process your orders
within seconds ! The best thing about our system is
that it is absolutely risk free for you ! But don't
believe us . Prof Ames of Tennessee tried us and says
"I've been poor and I've been rich - rich is better"
. We are licensed to operate in all states . We beseech
you - act now . Sign up a friend and your friend will
be rich too . Thank-you for your serious consideration
of our offer . Dear Sir or Madam , You made the right
decision when you signed up for our database . If you
no longer wish to receive our publications simply reply
with a Subject: of "REMOVE" and you will immediately
be removed from our club ! This mail is being sent
in compliance with Senate bill 2716 , Title 1 , Section
305 . This is not a get rich scheme ! Why work for
somebody else when you can become rich in 71 days .
Have you ever noticed more people than ever are surfing
the web & people love convenience ! Well, now is your
chance to capitalize on this ! We will help you sell
more plus turn your business into an E-BUSINESS . You
are guaranteed to succeed because we take all the risk
! But don't believe us ! Ms Simpson of Nevada tried
us and says "I was skeptical but it worked for me"
. We are licensed to operate in all states ! Do not
go to sleep without ordering . Sign up a friend and
y

It's true.

[His+name+cannot+be+s]

It is quite true!

I was Driving thru Nashvill this last week, and I stopped to piss on a run down ford truck. This guy came up to me and said "Your taillight is broken"

Re:It's true.

[MisanthropicProgram]

I guess I'm still asleep. It took me a while to get the Dr. Nash ("A Beautiful Mind") reference!

Re:It's true.

Heh... the people who didn't get it until your explanation are modding you funny... now that's funny.

hidden messages?

[zephc]

We have lots kill of viagra president for you to get a bush hard erection.

p.s.: kill kill kill.

Re:hidden messages?

Nice comment.
The CIA will be by shortly...please wait by the door.

Re:hidden messages?

[zephc]

No, no, I wasn't advocating killing anybody. I simply mistyped it, damn dyslexia. What I meant was "we have lots of viagra for you, president bush, to get a hard election. kill" I mistyped 'election', and Kill is short for 'Killin', as in the picturesque town in Scotland. I was recommending he visit it, that's all.

Re:hidden messages?

hidden messages? (Score:1, Troll)

Heh.

Anyway; that's Googlebombing. :P

Covert Messages

[dolo666]

I remember studying Thomas Pynchon in school, and upon hearing how his military records and university records were lost, I often wondered if his books were some kind of method of covert messaging, due to the code-like writing style he has, and the ominous history he has. Using spam as a method of communication is useful in the sense that it can be hard to tell who the real message is going to; making it impossible to identify the two points of connection, and therefore limiting accountability and obscuring who is doing the talking; so if Pynchon's books are like this... it would also be impossible to tell who the books were intended to (and therefore the US Mil could contact spies who could be in a tight spot, or informants who may be in a tight spot). The books could also contain a bunch of different messages using different cryptographies, in plain sight, to communicate with multiple agents. This is likely incorrect and way off the tin-foil-hat scale of reason, but the thought did occur to me when I read The Crying of Lot 49, and even more so when I read Mason and Dixon.

Re:Covert Messages

Funny? Mod: Interesting, please.

Karma whore

Re:Covert Messages

[dolo666]

> Funny? Mod: Interesting, please.

And that'd make you a troll. At least we've got our species, genus and phylum in check. Anything else?

Re:Covert Messages

it would also be impossible to tell who the books were intended to (and therefore the US Mil could contact spies who could be in a tight spot, or informants who may be in a tight spot). The books could also contain a bunch of different messages using different cryptographies, in plain sight, to communicate with multiple agents.

Three Days of the Condor is an excellent movie with this very same premise. :) IRL, however, it would be difficult to use something like this for communication.

If, as you say, some Three-Letter-Agency wanted to get a message to a spy "in a tight spot" they would hardly have time to wait for a conventional printing press to run off a mass-market publication. "Tight spots" need to be resolved in days (if not hours), and to send a message through a printing press can take weeks or sometimes a month to run an edition, bind it and ship it to all corners of the earth.

So I doubt anyone's using this technique with dead-tree publications :)

Re:Covert Messages

[sysjkb]

I often wondered if his books were some kind of method of covert messaging...

Around 1920 Edgar Wallace used this scheme in one of his thrillers about "The Four Just Men". One of the group has been captured, and given the high profile of his crimes, he is being held in solitary. In order to pass along the rescue plan to their imprisoned colleague, his compatriots write a travel book that contains the scheme encoded and arrange for it to be reviewed in enough major newspapers that the prisoner can legitimately request a copy.

Yours truly,
Jeffrey Boulier

Re:Covert Messages

[Sly+Mongoose]

"Tight spots" need to be resolved in days (if not hours)...

So they would have to print an article in a newspaper instead of a paperback novel.

Re:Covert Messages

When I'm in a tight spot, I have 5-30 minutes before I shoot my load. No way in hell am I stopping to read the paper or browse a book.

Re:Covert Messages

[dolo666]

> In order to pass along the rescue plan to their imprisoned colleague, his compatriots write a travel book that contains the scheme

Given the nature of criminal behaviour, I strongly doubt anyone would rescue their comrades unless they required them for some kind of financial gain, or if they were family (but not even the mafia do this).

The premise is cool, but the foundation appears shaky. Maybe if the guy had the key to a huge treasure or something like that, I could see it, but what kind of power this fellow must have had over his friends to enable them to go to such lengths to save him; and what tactics to have memorized a code and known about a book in advance to pull this off. Now that's trust!

Re:Covert Messages

[tehcyder]

I wish you would expand on Pynchon's ominous history, I thought biographical details were scarece to non-existent on him?

Re:Covert Messages

Keep in mind that this story was written in and was set in the bygone days of yore when men were men, women were women, and small furry creatures were small furry creatures.

The idea of springing someone out of the big house back in those days was something that was fairly doable and did not require the use of a helicopter, high-tech gizmoes, and taking the warden's family hostage. They didn't have to take into account sophisticated surveillance systems, every agent and officer searching for you having a personal 2-way radio, and televised APBs.

Get your buddy outta the pen, get him into a car and into some new duds, make tracks down the road and get a few miles behind you and you were pretty much home free.

Beat the Slashdot Spam Filter!

[CptChipJew]

What's the hidden message here?
--

Click here for free V1(4)gr[a]!

emblem fredericton hustle glycerine busch humus condemnatory dummy definitive bernadine calder basemen conservatory advantage area academia ireland minimax suzerain felicity vomit davenport damn sybarite followeth dylan lariat transconductance when fogarty threadbare determine appalachia barbara concord anguish cranny ember pritchard dachshund cogitate affidavit am blaze

-- Copied out of real spam message sitting in my box --

Re:Beat the Slashdot Spam Filter!

[Mr+Guy]

It's from your girlfriend. She says she's unsatisfied with your love life.

Re:Beat the Slashdot Spam Filter!

[JosKarith]

The hidden message is...
...don't use your real e-mail address on newsgroups.

Life is so unfair - my girlfriend gets so much better spam than me. Her inbox gets filled with "Teens Cummin", I get viagra. Are they trying to tell me something?

Re:Beat the Slashdot Spam Filter!

[AVryhof]

HAH! Not only did you beat the Slashdot Spam Filter, but you also managed to get mod points for it! Bravo! Now where does it link to so us poor Slashdotters can slashdot their sig....err... buy viagra?

Re:Beat the Slashdot Spam Filter!

[mosschops]

It's from your girlfriend. She says she's unsatisfied with your love life.

and considering he runs http://www.backdoorjesus.com, who could blame her eh?

Re:Beat the Slashdot Spam Filter!

[OwlWhacker]

From what I can make out, it appears to say:

i w4nt j00r m0n3y dud3!

Re:Beat the Slashdot Spam Filter!

[Progman3K]

>It's from your girlfriend. She says she's unsatisfied with your love life.

Things are looking up, he doesn't HAVE a girlfriend!

Re:Beat the Slashdot Spam Filter!

If his right hand is typing out and sending email messages to him without his knowledge then he has more serious problems.

Al Qaeda!

[Xenna]

Great, now, if we can just prove it's being used by Al Qaeda to help the Jihad we may finally get some political support for getting rid of spammers!

X.

Re:Al Qaeda!

[jmorris42]

> Great, now, if we can just prove it's being used by Al Qaeda to help
> the Jihad we may finally get some political support for getting rid
> of spammers!

I know your post was modded funny, but it really isn't. But you aren't being paranoid enough.

Broadcasting to agents in the field is not a new idea, using UCE/SPAM is just teh latest example.

In WWII the BBC embedded messages in their newscasts. Of course in the current political environment over there they would be more likely to be embeding messages for Al Qaeda.... but that is another rant....

Anyone who has ever listened to a shortwave for any length of time has probably heard a 'numbers' station, long thought to be broadcasts to agents in the field.

Now we see crazy text embedded in spam, often in segments of the message where it would never be seen by the target Outlook drone. Hell, the presence of 'invisible text' makes identifying and filtering it easier so why is it there? Spammers normally go to a lot of trouble to evade filters, the dead givaway is telling.

I have been observing a similar phenom on Uselessnet for a year or so. Seemingly meaningless streams of words or nonsense sentences spewed out onto usenet, with or without an actual attachment for the bianry groups. The ones WITH the attachments are the most interesting. Since most readers of binary groups are mechanical, a post that contains an on topic binary post wouldn't even flag as spam.

No, I'm really paranoid. I now think most spam is coming from intelligence agencies. Think about it, they setup a spamming operation and it at least breaks even or possibly generates actual revenue they can plow back into other covert operations Sure beats operating a shortwave station at a loss. And you know the CIA will be in the game, they are always good at adopting new technology.

So I'm sure they ARE going after the Al Qaeda spam operation, but you won't see it on TV, it will be Spy vs. Spy games. Hopefully more effective than Mad Magazine. :)

Re:Al Qaeda!

[Tin+Foil+Hat]

Why is the parent modded funny? It is very possible that real terrorist organizations really are communicating via spam, particularly spam sent to news groups where anonymous delivery is practically guaranteed.

Lately I have noticed many messages in several news groups that 1) do not seem to sell anything or have any real purpose and 2) employ obviously machine generated text of the kind that is useful for embedding messages. I sincerely hope that somebody important is monitoring these groups.

Re:Al Qaeda!

[Xenna]

Usenet would obviously be much preferable to spam for such purposes, that's why messages hidden in spam is such a silly subject. You'd have to be crazy to use spam for this.

But, then again, some people are crazy!

Some not-so-bright fellow in my country decided to extort a company by poisoning food (or something, I forgot). He had this great system devised for transferring the money (it involved sending out the data on a bank card's magnetic strip).

Not bad, since that way he would be able to withdraw the money from ATM's (quite a job considering the maximum) without having to physically receive the card (which would leave him open to arrest).

The moron instructed the company to use steganography to hide this data in a picture of a car. The company should post that picture on a second hand car site in Holland. Then the absolute nitwit used an anonymous proxy to access the data *from his home*!!!!!!!

The anonymous proxy people were easily convinced to let the police have his IP address and that was the end of it.

What he should have done is send them his public PGP key and let them post the encrypted data openly in a newsgroup (labeled as 'secret code for creating ransom bank pass' if necessary) in some popular nude binaries group.

Using steganography in this case is ridiculous.

Nobody can trace a usenet download (especially not in a popular nudies group).

X.

Re:Al Qaeda!

[1u3hr]

particularly spam sent to news groups where anonymous delivery is practically guaranteed.

Not really; many news server admins make strenuous efforts to remove spam from usenet; it's not likely it would propagate to any random server. Those that don't care about their servers often have lousy completion, so your spam might not appear becasue of that, or be pushed off immediately by a real spammer's flood.

It's so easy to get a throwaway web mail account that is a much simpler way to go. The garbage text is there simply as an attempt to foil filtering.

Microdot!

[Short+Circuit]

It's not, perchance, reproduced here: (.)

Re:Microdot!

[MarkGriz]

You found it!
Now, bring the Microdot to the Secret Panel room (directly below the Gold castle), along with 2 other objects.
When the black line on the right of the screen blinks, you can pass through it, revealing the secret message.

Re:Microdot!

[sk8king]

I was so proud when I found that little dot in the labyrinth of the black castle. Amazing game. In fact, I thought that I was the only one who ever found it.

Tin Foil Hats

[Allen+Zadr]

Maybe, but this might actually mean that the authorities will start putting some actual resources into finding SPAM outlets and shutting them down.

Oh, and Tin Foil Hats are useless - you must use my special patented Irradiated Tin Foil to keep the new mind control machines out.

Re:Tin Foil Hats

[I+confirm+I'm+not+a]

Do you sell patented Irradiated Tin Foil Hat plans, or do you just expect us to trust that you don't work ... with them?

Re:Tin Foil Hats

[YU+Nicks+NE+Way]

No. He's got a much more forward-looking, innovative, and fully buzzword compliant business plan.

His patent covers the intellectual content generated by, through, or with Irradiated Tin Foil Hats. If you have an idea while wearing one of his hats, or even an idea which can be shown to have been influenced by wearing one of his hats, then he is entitled to a reasonable and non-discriminatory license fee on the results of that idea.

Best: you know about licenses that promise a piece of your first born child? This product makes that literal: if you have carnal thoughts while wearing one of his creations...he gets a partial license on the outcome.

Re:Tin Foil Hats

[Tin+Foil+Hat]

Oh, and Tin Foil Hats are useless - you must use my special patented Irradiated Tin Foil to keep the new mind control machines out.

Folks, don't believe it. Mr. Zadr is merely trying to play on your fears to sell more of his hats. Traditional Tin Foil Brand (r) Hats offer more than enough security for the average overly-paranoid kook.

Re:Tin Foil Hats

[Allen+Zadr]

At least I don't "hide" behind a marketing slogan user ID. What government agency do you work for?

Oh, and don't send money to that other post - my irradiation method has nothing to do with ruining your microwave. I only use natural irradiation processes with my patented tin irradiation method.
</JOKE>

Facts about spammers:

I applied this method to the lastest 100 spam mail and got the following results:

1. 44.3 % of the spammers want to get me rich, too.
   
2. 32.2 % want to enlarge my penis
   
3. 25.3 % want to get me cheap mortage
   
4. 86.4 % can't spell
   
5. 98.3 % have a broken email program which produces defunct email header lines
   

No trouble in tacking them down now.

Re:Facts about spammers:

[jonjohnson]

79% of all statistics are made up on the spot.

Re:Facts about spammers:

How did you manage to get tenths of a percent if you used 100 e-mails?

Re:Facts about spammers:

[HD+Webdev]

1. 44.3 % of the spammers want to get me rich, too.

2. 32.2 % want to enlarge my penis.
3. 25.3 % want to get me cheap mortage.
4. 86.4 % can't spell.
5. 98.3 % have a broken email program which produces defunct email header lines

What bothers me most is that 0% of the spam has penis size decreasing products.

Where is the market for those of us who are scaring women away with our incredibly huge johnsons?

Re:Facts about spammers:

[budly]

My favorite part of the stats is the decimal percentages when there were 100 emails.

Re:Facts about spammers:

[fbform]

I applied this method to the lastest 100 spam mail and got the following results:

44.3% of the spammers want to get me rich, too.
32.2% want to enlarge my penis

Unbelievable! I never knew you could get 0.1% precision by analyzing a mere 100 discrete samples of email. Or does the 33rd spammer want to enlarge only 20% of your penis? Or is he only 20% sure that he wants to enlarge your entire penis?

Re:Facts about spammers:

[bfg9000]

spammers ... want to get me rich ... want to enlarge my penis ... want to get me cheap mortage...

Jeez, looking at these stats, I can't imagine why anybody WOULDN'T want to give their email address out to spammers. They seem to be nice people, geniuinely concerned about my wellbeing and happiness. We could ALL use more friends like these.

Re:Facts about spammers:

[naChoZ]

I wrote this many months ago, it seems to be on-topic here.

if i answered every spam...

I'd have a two foot penis and someone would still guarantee me that I could make it 3" longer. But I wouldn't because I'd already be able to attract any woman I wanted using "proven techniques" anyway. My 2' penis would be erect 24 hours per day, 7 days a week between my endless supply of hot porn featuring babes who like to show off on their "naughty web cams" to me as well as enough viagra to make a sperm whale fuck an iceberg and crack it.

I could enjoy all of this while talking to my loved ones at a long distance rate of $0.00001 cents a minute on my cell phone that I'd boosted the reception to such a degree that it transmitted as clear as a bell from the middle of the pacific on the cruise liner where I was enjoying 874 total days of cruise time for a mere $1.83. I could probably buy the cruise liner, as my debt reduction skills would be so vast that I could wipe out the u.s. defecit while simultaneously working from home making three to five thousand dollars per minute using nothing but my home computer.

Of course my website would turn into another huge, gigantic source of income due to the unbelievable number of people willing to promote my website and submit it to 956,451 search engines. Since I can only personally name about 8 search engines and only actually use about 3, I'm very grateful for this. I would probably bore of this quickly and since I can use the internet to "Find *Anyone* Instantly", so I'd simply find "someone willing to give me a billion dollars" and then that'd be one less thing. I thought of this because I'm so goddamn smart I have 12,874 university diplomas.

This level of intelligence proved helpful thinking of a way to pay back the 4,157 places that were willing to loan me money at an interest rate so low you'd think it'd been hidden by a worldcom accountant. Unfortunately, I probably won't be able to enjoy this for very long because I will eventually drown in an ocean of inkjet printer ink and toner.

Re:Facts about spammers:

[mph]

Where is the market for those of us who are scaring women away with our incredibly huge johnsons?

You're too busy writing those personal ads on Yahoo Personals to bother reading spam.

Re:Facts about spammers:

I could wipe out the u.s. defecit while simultaneously working from home making three to five thousand dollars per minute using nothing but my home computer.

You might want to do the math on that one. $5,000 per minute is:

365 x 24 x 60 x $5,000 = $2,628,000,000

That is less than 1% of the U.S. deficit, and about 0.04% of the U.S. national debt.

Re:Facts about spammers:

[jonadab]

> Since I can only personally name about 8 search engines

Search engines of any kind, or general web search engines that actually matter?
I can name dozens of the former, but there are only about four of the latter,
and that's being generous and counting AltaVista despite the fact that nobody
actually uses it anymore.

Now, if you include search engines that search something other than the web
in general, there are a few more that matter, in the special-purpose category.
search.cpan.org, for example, matters, catalog.loc.gov, and many others, but
they don't count if you're only considering "normal" (i.e., general-purpose
web) search engines. If you do count these, then there are more than eight
that I use on a daily basis.

Re:Facts about spammers:

[HD+Webdev]

You're too busy writing those personal ads on Yahoo Personals to bother reading spam.

True, but really, I am outdoorsy, intelligent, gentle yet assertive, and have a monster in my pants just like everyone else on yahoo!

Re:Facts about spammers:

[naChoZ]

Good point. I'll have to fix that.

However unless I'm storing it under my mattress, and that would be one big damn mattress, it would collect interest and therefore increase exponentially.

Where is the War On Terror when you need it?

[Mattintosh]

*** BEGIN KNEEJERK REACTION ***
Terrorists could use spam to send messages! Declare war on Hotmail! Nuke MSN! Hunt down the CEO of Yahoo! and tickle him until he talks!
*** END KNEEJERK REACTION ***

Meanwhile, how covert is it if you send it to a million of your closest friends? Heck, at that rate, you could use /. posts to send covert messages.

Dimple monkey twice the pudding octopi for tango man. Very blender shoe, cellular, scooter my daisy heads. Diddley day.

And all the rest of you can kiss your ass goodbye.

Re:Where is the War On Terror when you need it?

[Delphis]

Heck, at that rate, you could use /. posts to send covert messages.

Who says they aren't? .. maybe it's set up the moderations, or the -1 trolls noone reads..

Re:Where is the War On Terror when you need it?

[tildebeast]

Spam 77,000 of your closest friends and you will be assured 77 virgins when you get to heaven.

Re:Where is the War On Terror when you need it?

[SCHecklerX]

That is why it is so useful. Most people just discard spam. That is why it was/is being used by groups to communicate..because it is ignored and hard to trace.

Re:Where is the War On Terror when you need it?

[Bender+Unit+22]

The monkey swims in the moonlight tonight.

Re:Where is the War On Terror when you need it?

[Progman3K]

>*** BEGIN KNEEJERK REACTION ***
>Terrorists could use spam to send messages!
>[...]
>Heck, at that rate, you could use /. posts to send covert messages.
>*** END KNEEJERK REACTION ***

*** BEGIN KNEEJERK REACTION ***
BOMB SLASHDOT NOW!!!
*** END KNEEJERK REACTION ***

Re:Where is the War On Terror when you need it?

[zhenlin]

* Alarms sound in The Redmond Campus *

ANNOUNCER: Attention Employees! Nuclear Warhead approaching!

BILL GATES: Quickly, crash the navigation systems!

TECH #2398: I've tried all the standard tricks! I cannae crash!

TECH #2399: Probing... It runs... The M-OS sir.

BILL GATES: M-OS??

TECH #2398: You know, the Fruit?

BILL GATES: Which fruit??

TECH #2399: The red one the students give teachers?

BILL GATES: Damn you Mattintosh!

* The blast destroys the Microsoft Campus, taking MSN and Hotmail with it *

Not Surprising

[Steve+B]

Wrapping hidden messages in spam is an obvious method of defeating traffic analysis (the gathering and use of information about who is talking to whom, without necessarily being able to read the content of the messages). I would be very surpised if terrorist organizations haven't been doing this ever since spam became voluminous enough to serve as an adequate noise background.

Really, the Feds ought to be hauling in spammers (for violations of all sorts of existing laws pertaining to fraud, computer cracking, etc) and anal-probing them for customer records, instead of wasting time on nonsense.

I already miss spam...

[heironymouscoward]

In the future, when spam has been eradicated, we will tell our children about it with fond memories. "Yes, we got messages like '1ncreas3 y3r p3ni5 5iz3!', and 'v14gr4 n0\/\/!'"

Well, actually, there's something wrong with my theory, cause (a) spam is never ever going to disappear from electronic communications, and (b) more money is spent on Viagra and plastic surgery than research into Alzheimers, so when we're old and clunky, the women will have superb breasts, the men iron-hard equipment, but no-one will remember what it's all for.

Re:I already miss spam...

[hacker]

(b) more money is spent on Viagra and plastic surgery than research into Alzheimers, so when we're old and clunky, the women will have superb breasts, the men iron-hard equipment, but no-one will remember what it's all for.

Actually, Viagra (sildenafil citrate) was originally an arrhythmia treatment (i.e. heart medicine, to help people with strokes and frequent heart attacks). ALL of the money that went into the research of (what is now called) Viagra was there to support a drug for cardiac patients.

Only when some of the clinical trials had less-than-optimal results as a cardiac treatment, and an additional "side effect" of erectile sustainment, was it recast as an erectile dysfunctant treatment. They weren't going to pour the millions they spent on researching the cardiac drug, down the drain, so they recast it as Viagra, and that is what you know today.

I know this, because I used to work with the group responsible for doing the purity/potency testing of this specific compound within $PHARMA.

Also, contrary to popular belief, Viagra does not produce erections . It increases blood flow (hence the original cardiac target). The increased bloodflow helps you sustain an existing erection longer than you normally could. It does not give you an erection.

Re:I already miss spam...

[jcuervo]

It does not give you an erection.

Oh, yeah? Then explain THIS!!!

Re:I already miss spam...

[liquidsin]

How comedic. A drug originally intended to prevent stroking is now used to facilitate it.

Re:I already miss spam...

[UpnAtom]

No, it is the popular belief itself that produces erections.

Impotence is generally caused by feeling anxious about being unable to perform sexually. Any improved expectations will help.

I wasn't dreaming!

I wasn't dreaming or crazy. I just knew some of the spam I get was written left handed.

I am vindicated!

In your face!

Aha I knew it!

If you study those emails from Nigeria a secret message is revealed:

"Fat White suckers please hand over your money and I will laugh at you"

To reveal more secrets of spam please send me $200 to:

Mr Okilea Bessei
3 St Lener St
Abuja
Nigeria

Could it be??

[adamofgreyskull]

That I'm onto something?

In addition he showed that some spam is being used as a covert communication channel.

Mozilla, it say...

"This document contains no data"

Oh the irony.

Five types of spam

[sirdude]

I only get five type of spam, viagra/penile length/prescriptions, mortgage/loans/creditcards, 419/earn $25000 daily, porn/dating service, virii/trojans/scams - banking etc.

I'm not including tricky spam like Real etc. where you actually give them your email address involuntarily..

Re:Five types of spam

A@B.C

Re:Five types of spam

[sirdude]

myfavouriteboss@myfavouritecompany.com is what I tend to do ;)

Why is this suprising.

[re-Verse]

One of the best methods of not having your communications snooped in on is to use a busy, noisy channel. Communications inside of malls, clubs, whatever. It makes perfect sense. People don't expect sensitive information in soe sort of public form, so they don't listen for it. We're all so sick of spam that we erase it on sight - so if someone wants to use it to communicate - its perfect. It draws a hell of a lot less attention to ones self rather than forming a whole new covert form of communication.

What looks more suspicious - A spam with some seemingly random keywords to throw off the filters at the bottom, or a highly encrypted data transmission on an obscure port. I know what one would make me take notice first.

Re:Why is this suprising.

[Jim_Maryland]

Great, so how many of us will start reading all our SPAM to try to locate secret messages.

Guess I'll have to get that box of Cap'n Crunch to get the secret decoder ring now too. Too bad kids, Dad get's this decoder ring.

Re:Why is this suprising.

[Rick+Zeman]

Yup. You hit it dead-on. Where's the best place to hide a tree? Or a needle? (The answer is not a haystack!)

Re:Why is this suprising.

[golgotha007]

your comment is very sound and makes a lot of sense.

perhaps i'm missing something here, but if someone wanted to send someone else an extremely covert message, why wouldn't they just encrypt it? i mean, wouldn't 1024 bit be enough?

Re:Why is this suprising.

[re-Verse]

Well thats the thing. An exptremely covert message gathers more attention. Like "Wow - look at that random stream of data from that source - it must mean something because I can't decipher a bit of it - monitor all futher incoming and outgoing communications to that IP", whereas spam - well, like I said, nobody pays any attention - they think its just some slimeball trying to make a greasy dollar off a sucker who knows no better.

I know its ironic, but often the best hiding place is in plain sight.

Re:Why is this suprising.

[daBum]

Yes.

However, what if your recipient is going to be using publicly accessible (non-safe) terminals, which won't have your decrypt software on it?

How better to conceal it than to obfuscate it in the message? That way those who know will see the "hidden" message, and other people won't (given a reasonably complex cipher).

Don't over water the daisys, but remember to trim the marigolds.

Re:Why is this suprising.

[sartin]

perhaps i'm missing something here, but if someone wanted to send someone else an extremely covert message, why wouldn't they just encrypt it?

Traffic analysis. Since not all intercepted messages can be decrypted in a timely fashion, one way intelligence is gathered is by looking at the communication patterns independent of the content. Knowing that bad person A sent unknown person B some set of messages (and even moreso noting that they were strongly encrypted) yields a strong suspicion that person B is part of the same bad collective as person A. By sending many messages all over that are noise, the real communication is lost in the noise. Not just the data in the communication, but the data about the communication.

Re:Why is this suprising.

> > perhaps i'm missing something here, but if someone
> > wanted to send someone else an extremely covert
> > message, why wouldn't they just encrypt it?
>
> Traffic analysis.

Just because traffic analysis is taking place doesn't mean you shouldn't encrypt your data. It means your (encrypted) data should take on the characteristics of the traffic it is part of in order to evade successful traffic analysis.

Encryption and steganography solve two different problems, and are actually complimentary, not exclusive.

Presentation contains hidden message

[JohnGrahamCumming]

Must do, I looked at all 73 pages and didn't learn anything.

John.

Steganography...

[Lord+of+Ironhand]

... is the technique of hiding certain information in other information. As opposed to encryption, which just makes the information unreadable without the correct key. Steganography & cryptography make a very nice combination since the random-like nature of encrypted data makes it easier to hide.

A google search for "steganography" yields a lot of useful documents on this.

Re:Steganography...

[russotto]

Yeah, and the nature of spam makes steganography EASY. Exactly which mis-spelling is used for a word could encode several bits. Those HTML comments used to obscure could hide entire words, in both content and placement. So could the lists of nonsense words used to defeat SPAM filters.

Re:Steganography...

[Lord+of+Ironhand]

So could the lists of nonsense words used to defeat SPAM filters.

In fact, when I first saw these random word lists the first thing I thought of was hidden communication, NOT defeating filters...

Btw, Usenet also makes a great medium for this since it's possibly even harder to discover the intended recipient (especially when you encode the message in some pictures posted to an alt.binaries.erotica group...).

Re:Steganography...

[Count+Karnstein]

(especially when you encode the message in some pictures posted to an alt.binaries.erotica group...)

Yes but then there's always the risk that someone has the original images, finds out in some way (md5sum?) that yours are different, and decides to calculate the differences. I'm afraid that to be really reliable, you'll have to make your own images...

Re:Steganography...

[gothzilla]

No, just make sure you make some changes to the pic before applying stenography. Change the size, color depth, tone/hue, whatever, and you'll give it a new MD5 before sticking your message in there. This way comparing to the original gives you an MD5 that's useless.

Re:Steganography...

[sd3]

Hmmm, I recall reading another Slashdot article about a guy who, among other things, shows how to defeat several popular steganography packages. I'm certainly no expert. I just wonder how useful steganography can ultimately be. There just doesn't seem to be enough entropy in English (or any other language) text to serve as a useful medium for hiding stuff.

Re:Steganography...

[Lord+of+Ironhand]

Thanks for the tip, never thought of that. And the prospect of a lot of slashdotters suddenly deciding to make their own pr0n was just a little too much :-)

Incidentally, it's steganography, not stenography, a common mistake. Stenography is a system for writing really fast...

Re:Steganography...

[Lord+of+Ironhand]

Luckily, pictures, movies and sounds that are not computer-generated are bound to contain a certain amount of noise (at the very least from the necessary quantization). Noise is perfect for hiding encrypted data since noise is random, and strongly encrypted data also appears random unless you have the encryption key.

In a human language that has no possibility for redundancy (allows anything to be described in only one way) there wouldn't be space for steganography at all. Combined with the fact that most languages at least pay some attention to being efficient, it's no surprise that human language is terrible as a carrier for hidden data.

Re:Steganography...

So probably the most secure way to send a message over the internet today would be to encrypt it, then apply steganography to encode the encrypted message in a set of pictures (you know what kind), and then post the set on UseNet, perhaps through a series of anonymizers...

That would explain why there are so many reposts out there.

Re:Steganography...

[Bingo+Foo]

In a human language that has no possibility for redundancy (allows anything to be described in only one way) there wouldn't be space for steganography at all. Combined with the fact that most languages at least pay some attention to being efficient, it's no surprise that human language is terrible as a carrier for hidden data.

This actually goes a long way in explaining the difference between the two presidential candidates. What Kerry likes to call "nuance," is actually a steganographic secret message. I have now decoded it and find the contents to be the repetition of this one phrase: "I am wishy-washy."

Re:Steganography...

[Lord+of+Ironhand]

That depends on what exactly you consider "secure". If you completely want to obscure the fact that "abnormal" communication is taking place, yes, than you would have to do something like the thing you mention.

If you want to obscure both the contents of the communication and who exactly the reciever (or, on the other side, the sender) is, technologies like Freenet allow you to do this. It's still possible for someone with a packet sniffer to find out that you are running a Freenet node, but not with which other people on Freenet you are communicating.

And just sending encrypted e-mails is in a way pretty secure too, it's just that it might draw suspicion... (that probably goes for Freenet too, though)

Re:Steganography...

> Steganography & cryptography make a very nice
> combination since the random-like nature of encrypted
> data makes it easier to hide.

Steganography and cryptography do make a nice combination. However, the random-like nature of encrypted data makes it **harder** to hide, not easier.

Highly uniform, random-like data such as what is typically the result of encryption stands out from other non-encrypted data like a sore thumb. This is one reason you need steganography: to hide the neon-sign that is encrypted data shouting at the world, "THIS IS SECRET!!! THIS IS IMPORTANT!!!"

Quick, start writing

[radiophonic]

"The Spam Code" I'm sure we can sell more than the "Bible Code" Somebody mass-mail the news!

Re:Quick, start writing

[Progman3K]

>"The Spam Code" I'm sure we can sell more than the "Bible Code" Somebody mass-mail the news!

That's exactly what I did, and someone bombed my house!

Oh, very covert

Yeah. Covert messages in spam. Very covert indeed sending the message to *everyone*!

Actually...

[mykepredko]

I would have though properly grounded tin-foil gloves would be more appropriate in light of this article.

You don't want anything travelling from your fingers through to the keyboard...

myke

Comment removed

[account_deleted]

Comment removed based on user account deletion

Mirror

[arvindn]

*Sigh* I don't know what the editors are thinking when they post direct links to pdf files. Slashdotted instantly. Luckily, throwing the filename at google turned up a mirror.

Released from the IMA

[Herkum01]

Press Release from the International Marketing Association

"Yes it is true, you found us out. We were attempting to improve young people with our hidden messages about Viagra, barely 18 Lolita's, and breast and penis enlargement ads. The messages were,

Say your Prayers.
Take your vitamins.
Do your homework.
Love thy neighbor.

I certainly hope that noone misunderstood what we were trying to communicate. in our ads.

Everything has a secret message.

[subzerorz]

Just about anything on the net has a secret message. Even images.

Re:Everything has a secret message.

Is it something like "This document contains no data"? Careful for posting links on /. I say!

Crazy

Messages in spam? That is just crazy.

Next time they start finding information in /. articles...

Steganography

[Alioth]

If you think of it, hiding messages in spam would make quite good steganography. Since pretty much most spam comes with a sizeable chunk of 'hashbusters' (random words on the bottom, random characters in the subject), you could hide your message quite easily in the hashbuster.

In regular email, just the fact a PGP encrypted message was sent by Alice to Bob would tip the authorities off that Alice and Bob were at least communicating; if they are both criminals for instance, just seeing the activity between Alice and Bob might be enough to alert the authorities to watch the pair a bit more closely because something's about to go down - even if they can't actually discover the message content.

However, if Alice and Bob are both spammers, and use the Windows worm du jour as their open spam relay, and each spam a few million email addresses, it's much harder to see that Alice and Bob are in fact conversing let alone find the actual message.

Re:Steganography

[Sly+Mongoose]

In regular email, just the fact a PGP encrypted message was sent by Alice to Bob would tip the authorities off that Alice and Bob were at least communicating; if they are both criminals for instance...

Wot choo talkin' 'bout, Loois?

Just the fact Alice sent a PGP encrypted message to Bob defines them both as criminals. At least, in the USA it does. Britain too, I think...

Re:Steganography

[Alioth]

It doesn't in Britain, but by law the Police are entitled to ask you for your encryption keys and passphrases, and if you refuse (or have forgotten!) you face criminal prosecution. This stupid piece of legislation of course effectively makes any automatically keyed encryption (let's say IPSEC or SSH) a way of prosecuting someone.

If the Police are trying to get you for *something* but can't get anything to stick, or a high-end civil servant is trying the same, what's to stop them demanding your encryption keys for your IPSEC or SSH session, and then prosecuting you because you can't hand those over - because you never knew what they were?

Fortunately, we don't have this stupid piece of legislation where I live, although I live in the British Isles (just not in the UK)

nigeria

[lemody]

oh they are evolving at nigeria! next step will be crypted spam-messages, so recipient has decrypt spam and find out what was the sender selling to him... :)

Irradiated Tin Hat

Send $2 and SASE to
How to Destroy your Microwave
PO Box 204206
Austin, Texas, USA 78720

rent '3 days of the condor'

[dhenry]

For your hidden-code-in-popular-fiction pleasure...

Robert Redford discovers a double-secret CIA plot after analyzing book plots for the CIA.

P.S. - DO NOT look for the book in used bookstores, it sucks. The movie smooths out some of the macho BS in the book and adds some depth.

-- "Me post off-topic one day"

Plaintext reading

[Animaether]

Time to default reading your e-mail in plaintext, perhaps ?
If the e-mail doesn't offer a plaintext counterpart, then most likely it's not worth reading anyway - lest it's an HTML newsletter that you actually signed up for, but that should be obvious to spot.

Re:Plaintext reading

[Stud1y]

or i am easily amused. plaintext doesn't offer the cute little Outlook fonts and "phone" characters for people's email signatures. How in the world would i be able to tell that it's a phone number, and not just some random digits, in a three-three-four meter?

michael, April Fool's Day was last week

[powera]

It isn't funny any more. Give it up already.

Covert message Enclosed

[AVryhof]

Is your meat not all it's cracked up to be? Need more meat in less time? Can't afford drugs that improve your sex life?

You need to buy V14gra. There is nothing like it in the world. Have Nice Juicy meat in just minutes. No more waiting, no more high prices! Act now and we will throw in a free Key!

The TRUE hidden message...

[lacrymology.com]

There certainly is a hidden message contained in ALL of my spam:

YOU HAVE A SMALL DICK.

-m

Working URL for the Paper

[DaneelGiskard]

Server's down, here is another one ;-)

bh-win-04-kret.pdf

Re:Working URL for the Paper

Dupe

I doubt they will

[swb]

Maybe, but this might actually mean that the authorities will start putting some actual resources into finding SPAM outlets and shutting them down.

I doubt it. I think spam is too big of a money maker for "legitimate" businesses at this point; ISPs, banks, and of course a Slashdot favorite, marketing departments all are making a buck off of spam.

And don't think the possibility of using it for bad-guy communications will help; they'll just use it to limit freedoms, not actually remove the real problems.

That's not what I heard.

[geekpuppySEA]

Played backwards it says "I buried Paul".

I heard "I enlarged Peter."

Re:That's not what I heard.

I buried Peter.

The Purloined Letter

[Unknown+Kadath]

Edgar Allan Poe used "hiding in plain sight" as a plot device for one of his August Dupin stories. Poe invented the detective story, paving the way for Sir Arthur Conan Doyle's Sherlock Holmes.

[Yeah. It's offtopic. Neener.]

-Carolyn

Re:The Purloined Letter

thanks for the background - I knew that it was sort of a "known thing" but i wasn't too clear on from where - now you've given me soemthing to research :)

Re:The Purloined Letter

[Unknown+Kadath]

Oh, I'm certain the priciple goes back further than Poe--people were busy being sneaky bastards long before the 19th century. The Elizabethans played incredible backstabbing spycraft games, for instance. Try looking up the life and death of Christopher Marlowe. He did more than just write plays. I don't understand why history classes are always so dull when history itself is so interesting.

-Carolyn

Re:The Purloined Letter

[jc42]

I don't understand why history classes are always so dull when history itself is so interesting.

There's an old paranoid theory that schools make history look boring so that the masses won't want to study history, and they won't understand what their leaders are doing to them. All your history teachers have been part of this conspiracy.

Actually, I had a history teacher in high school who made it interesting to his students. The local parents were constantly pressuring the school board to fire him. So I'd conclude that you don't need the above theory to explain it. The general population appears to approve of keeping the population ignorant of history.

Re:The Purloined Letter

[MurphyZero]

Don't forget that codes were used back in Caesar's day (Caesar codes) I bet that even in caveman days, some caveman was doing get rich quick schemes with "Get women easier. Use brand new guaranteed, OG's Clubs. Knock them out and take them back to your cave. And if her man gets upset, OG's Clubs work just as well on men. Only one saber-toothed tiger pelt."

thanks for the effort

[zogger]

it was decent,the link to the mirror, unfortunately I can't get to the mirror, either. I clicked off as soon as I realised I was contributing to the effect. It's easy to see it, nothing wants to load either at the direct link or the mirror. (for me anyway)

I am wondering if any kind soul might post a paragraph or two containing the gist of this? Sort of hard to discuss this subject without clue one besides "hidden in spam". I was more interested in how they find the originators of the spam, beating the obfuscatory manner in which most spam is sent. That to me is more interesting, as in "hunt them down / heads on pikes" I don't want to filter out spam from my email inbox, I want to filter out spam originators from the earth's "here" box....

Re:thanks for the effort

I am wondering if any kind soul might post a paragraph or two containing the gist of this? Sort of hard to discuss this subject without clue one besides "hidden in spam".

It isn't an article where you could post the text. It is just a PowerPoint presentation in the form of a PDF file. For what it's worth, most of the interesting things about it can be gleaned from the intro Slashdot summary and then the comments that follow. Seriously. I'm a big fan of reading the source articles before reading/posting Slashdot comments but in this case, you aren't missing much. As for "clue one"... Think about how you would do it. Read up a little on the Allies/Axis powers in WWII or the stuff that was done in the Cold War. Understand that you are only going to get very short, pre-defined things through, in code. Go from there.

PS: Tinfoil hat theory not far off the mark: If you can find some of this in the wild and link it to terrorism -- even if it was planted by TPTB (The Powers That Be) -- suddenly you'll see laws about spam/email/monitoring like you wouldn't believe... interesting...

Mistaken covert messages?

[Chuns]

With the volume of spam, how does a covert agent know he is getting a hidden message from his source? I thought my job was boring. Can you imagine weeding through all the spam because you are looking for a hidden message?

Re:Mistaken covert messages?

[Steve+B]

With the volume of spam, how does a covert agent know he is getting a hidden message from his source?

1. Set up a short list of words, one of which will appear in the subject line of each hidden message. (They need not be "spammy" words; random anti-filter(?) junk has been showing up in spam subject lines as well as the message body.)

2. Brute-force the process by running all incoming mail through your stegonography program.

Re:Mistaken covert messages?

[Chuns]

Still, I would think the probability of getting mixed messages would be too high for sensitive information... especially for #2. Maybe a short list of very strange sentences would make it unique enough.

Just strip HTML out at the milter/MTA side

[hacker]

If you don't want to get any of these annoying webbug/spam/trojans buried in HTML emails, simply strip them out at the MTA level, with procmail or your milter or whatever else you trigger them in.

Safe for you, safe for your users, and brings email back the way it ought to be, 7-bit ascii text.

use File::Slurp;
use HTML::Parse;
use HTML::FormatText;

$file = "email.html";
$html = read_file($file);
$plain = HTML::FormatText->new->format(parse_html($html) );
print $plain;

I'll contine to take my webpages on port 80, and my mail on port 25, thank you very much.

Re:Just strip HTML out at the milter/MTA side

Safe for you, safe for your users, and brings email back the way it ought to be, 7-bit ascii text.

I agree with you in principle, however, we need to be careful not to strip out characters users should see. Even if you only communicate in English, do you really want to reduce the names of everyone you correspond with to 7-bit ASCII? Check the list of developers on your favorite open source project.

Re:Just strip HTML out at the milter/MTA side

[mce]

No, that won't do.

I basically don't want any HTML mail. So I deliberately read my mail with a mail client that is not able to process HTML (the original version can, but I disabled it in the source). But every now and then, I get a valid mail that has been formatted in HTML by some misguided soul, company, or program. Most of these I read "as source", but sometimes the HTML really needs to be rendered properly.

I don't want to get any bullsh*t spam, but I *do* want to get all the bits that person X or company Y, whom I trust, wants to - or has to - send to me. The mail admins should please keep their dirty fingers away from what I consider to be my "private" property. I'm perfectly able to do my own filtering based on criteria that fit my situation. As, in fact, I do.

Re:Just strip HTML out at the milter/MTA side

[hacker]

I don't want to get any bullsh*t spam, but I *do* want to get all the bits that person X or company Y, whom I trust, wants to - or has to - send to me.

That is what whitelists are for. Learn to use them.

I'm not saying that you should use this exclusively, but it should be part of your antispam arsenal. I have never lost an email that I expected to receive.

With 7 RBLs being used on our networks, we are blocking 95% of the incoming spam with just that alone.

If anything gets beyond that, SpamAssassin catches and files 99% of those.

Anything else that gets through that, and is formatted with HTML content, and not in the whitelists, gets the HTML stripped. If that is unintended, then we can whitelist the sender, and it doesn't happen again.

Anything that gets filed into the SPAM folder, and is honestly spam, gets reported to abuse@domain.tld. Any site that rejects that email, gets their domain blocked on port 25.

So far, out of 5k emails a day, we haven't lost a single email in years, and 1 or 2 "legit" spam emails sneak their way through to user mailboxes. We deal with those on a case-by-case basis.

Re:Just strip HTML out at the milter/MTA side

[mce]

I know ahat whitelists are, thank you very much. I use them.

My problem is that at home I can do what ever I like, at work I cannot. Telling my sysadmins that this mail "they" just mutilated was yet another that really is perfectly fine and that the sender should be added to their whitelist(s) would be a serious nuisance. It takes time (while I regularly work at 1 AM, they don't); they cannot listen to every single of our 1500 employees who has a similar request (htough, admittedly, they will listen to me, given my position in the company (but that's baside the point)); and it doesn't retroactively address the issue of the mail that triggers the complaint.

We do a lot of filtering too. At company level and at personal level. But even so, some HTML mails get through (guess what: because their senders are whitelisted!). These are the ones that I use my specially adapted e-mail client for (I *despise* HTML mail).

http://www.hang-outers.com/about/images/founder-me

http://www.hang-outers.com/about/images/founder-me j.jpg

7 years too late...

[The+Lynxpro]

How exactly is this news? Hidden messages in spam? If I recall correctly, this was a plot piece from 1997's "The Saint" film. Embedding secret messages into email and cyberpr0n. C'mon, doesn't anyone remember that film? Val Kilmer playing a British character sans the British accent? :)

Cold fusion was the other plot piece to it. Damn Halliburton putting the kibosh on that... :)

Petra Arkanian?

[octal666]

and her final lucky dragons, was Orson S. Card a ponent?

I decoded it!

[hoggoth]

I just went through a large corpus of spam text looking for statistical irregularities, and I think I found something!

Oddly enough it was the presence of text that was MORE random than statistically likely, not less random, ie: the randomness was TOO PERFECT.

After intense analysis I have decoded the hidden plain-text. It reads:

"BUY OVALTINE"

What does that mean?

Re:I decoded it!

[MarkGriz]

"What does that mean?"

It means you decoded it wrong.

It should read "DRINK MORE OVALTINE"

another 600lb gorilla

[CountDown]

Hello! People! There is a 600lb gorilla in the room. Think! This is just another scare tactic.

George W. Bush, and the other powers that be are going apeshit over the internet because they can't control it.

Bill Gates tosses and turns all night thinking about millions of email whizzing about from which is making not a cent.

Surely, there's an answer to both problems. I know, let's tell the people they need to be protected from spam! They want to protect us from spam because it's annoying, because it's immoral, and now because terrorists are using spam to send secret messages?

Good grief, we've seen this same tactic so many times. Spam can be annoying, I agree, but in this case the cure is far worse than the disease.

They are trying to scare us into allowing them to regulate the internet, or at least charge us for email.

More importantly, all of this communication scares them to death. They are afraid the great unwashed will discover the man behind the curtain.

I got your message

[heybo]

We got your message

We will begin the attack now

What about the NSA, etc?

[Clinoti]

I wonder how long it will take the new watchdogs for communciation or other national internal organizations to receive a memo from a group like SpamHaus to further push the drive for authentication in email and systems.

Having a system of communication in place that is normally resigned to 'chatter, junk, and immediate delete' allows for cell(terrorist/activist/..ist) communications right under the radar of those who are supposed to monitor such communications. If that angle is approached I don't see them not pushing a better email system into place.

This also begs the question of who really pushed for this report/survey.

Analogous to spy numbers stations?

[GeoGreg]

In addition to the 1337 hax0rs, I wonder if the international spooks are using Spam instead of/in addition to the shortwave spy numbers stations? Maybe it's the CIA or MI5 wanting to enlarge your penis and breasts!

Re:Analogous to spy numbers stations?

[dark_day]

well, I've never seen a Bond girl with a small pair...

Scooped by comment in previous article

[MCRocker]

A previous article, Passive E-Mail Monitoring Leads To Arrest, had a comment that proposed also showed how spam can be used as a covert communication channel. So, even slashdoters can figure this stuff out.

thankyou

[zogger]

--we've been having another good discussion on various hidden messaging in the other recent article lately -> "passive email monitoring leads to arrest". Check it out if you haven't already.

Re:thankyou

[uptownguy]

Heheh ... I've been going back to that thread a couple of times already today. Heck, isn't that the whole point of Slashdot? I can go to (CNN/BCC/NYTimes/Salon/FoxNews/GoogleNews/ScienceD aily/etc) and get my stories... but Slashdot is the place to come to read what people think about these stories. And through the magic of the moderation system and hundreds of thousands of vistors a day, you are assured of reading the strongest arguments pro/con about any of these issues. You start to build CONTEXT and begin to see the BIGGER PICTURE. You learn to think about things you otherwise wouldn't...

At least that's how I justify my addiction.

Re:thankyou

[zogger]

my addiction is just writing and posting. You could drop me onto the ladies auxiliary knitting forum and I could come up with an opinion......

Re:Steganography and Usenet

[Kozar_The_Malignant]

>However, if Alice and Bob are both spammers, and use the Windows worm du jour as their open spam relay, and each spam a few million email addresses, it's much harder to see that Alice and Bob are in fact conversing let alone find the actual message.

I have always thought that applying a similar method to Usenet would be effective. Posting a MMF message to a bunch of high traffic newsgroups with your real message hidden in the spew would certainly keep at least one end of the trail hidden. This has the advantage of allowing the recipient to access the message from any computer; libraries, internet cafes, etc. You could also use a more traditionaly steganography technique with jpeg pR0n posted to a tasteful alt.binaries group.

Hmmm.. I wonder if anyone has thought of using those no-longer-fashionable Echelon-buster sigs as message carriers.

OT Re: sig

[11223]

Jesus Christ, they're making Teela Browns!

Re:OT Re: sig

[AndroidCat]

Yep, that's what I thought too. Too bad I noticed the story after the recent Ringworld article, but through the miracle of retro-sig-modification, it's always been my sig (since Tuesday). ;^)

It's a stock tip.

[nortcele]

Wang is up!

I've really scairt meself today

[way2trivial]

check out this post that I made the other day

If you use Spamcop, messages are bidirectional

It occurred to me also about the hidden communications channel in spam, but if you report the spam with Spamcop, it will send the spam report back to the domain it came from, furnishing a return communications channel.

Modify the original spam a bit to encode your reply, and you have a bi-directional hidden communications channel. The return emails are hidden in the huge volume of spam reports from spamcop.

Re:If you use Spamcop, messages are bidirectional

[mabu]

I have noticed something though. My system seems to be under a lot more attacks since I've been reporting to Spamcop, which implies to me that the Spammers are retaliating against those who use Spamcop (likely a testimonial to how effective Spamcop is). For example:
Apr x xx:xx:xx inetd[1513]: ftp from 81.57.71.105 exceeded counts/min (limit 2/min)
Apr x xx:xx:xx last message repeated 225 times

This IP address hit our ftp server 227 times in the period of ONE SECOND. The IP is from a French DSL pool, a common spam source. I'm not sure what they're doing but it's either a system probe for vulnerability or a kind of attack.

Spamcop mails a copy of the spam to the reporting abuse addresses. I believe that the spammers are using software now that embeds codes into the spam so they can trace spam reports back to a specific e-mail address.

Call me cynical, but...

...I wonder if this is the real reason behind the recent increase in official anti-spam activity?

Decode this...

Dear Friend ; Your email address has been submitted
to us indicating your interest in our newsletter !
If you no longer wish to receive our publications simply
reply with a Subject: of "REMOVE" and you will immediately
be removed from our club ! This mail is being sent
in compliance with Senate bill 2516 , Title 4 ; Section
303 ! This is not multi-level marketing . Why work
for somebody else when you can become rich in 77 DAYS
! Have you ever noticed nobody is getting any younger
& nearly every commercial on television has a .com
on in it . Well, now is your chance to capitalize on
this ! WE will help YOU SELL MORE plus use credit cards
on your website ! You can begin at absolutely no cost
to you . But don't believe us ! Mr Simpson who resides
in Idaho tried us and says "Now I'm rich, Rich, RICH"
. We are a BBB member in good standing ! For the sake
of your family order now . Sign up a friend and your
friend will be rich too . Thank-you for your serious
consideration of our offer . Dear Business person ,
Especially for you - this breath-taking information
! If you are not interested in our publications and
wish to be removed from our lists, simply do NOT respond
and ignore this mail . This mail is being sent in compliance
with Senate bill 2116 ; Title 4 , Section 302 ! This
is not a get rich scheme . Why work for somebody else
when you can become rich in 41 DAYS . Have you ever
noticed people love convenience plus most everyone
has a cellphone . Well, now is your chance to capitalize
on this . We will help you deliver goods right to the
customer's doorstep & turn your business into an E-BUSINESS
. The best thing about our system is that it is absolutely
risk free for you ! But don't believe us . Ms Anderson
of Hawaii tried us and says "I was skeptical but it
worked for me" ! We are licensed to operate in all
states ! We BESEECH you - act now ! Sign up a friend
and you get half off ! God Bless .

Wasn't this in an episode of Alias two years ago?

[Knowbuddy]

SupaDupaSpy Syd and Noah Hicks (Peter Berg) are on a plane back from Madrid (?) and he asks her why she never met up with him in Rio (?). She's shocked and has no idea what he's talking about. He'd encoded the meeting invite in the headers of a forged spam email. She never got it because she has her computer automatically delete all spam.

Pretty sad when /. is scooped by the pretend-CIA by over a year.

Or disco songs too

The same guy also came up with a scheme for hiding messages in lists. The applet uses disco songs, but any ordered list will do.

Sounds like a few posts from yesterday

http://slashdot.org/comments.pl?sid=103223&cid=879 3243

http://slashdot.org/comments.pl?sid=103223&cid=8 79 6548

Reverse Speech

[Sanat]

David Oates has found this information about reversing speech.

I had a buddy who took Oates class and is now certified in reverse speech therapy.

Hmmm..

[LordPhantom]

Hmm... now there is a good idea.... convince the government that spammers are possible terrorists..... it would kill two birds with one stone!

I figured it out!

[Phat_Tony]

It anagrams to "Dissident hangs the compassionate"

I know what you've been doing, and I'm alerting the police! You serial killers are always leaving sneaky notes behind, thinking we won't catch you. Well you deserve the electric chair! (see I'm not compassionate. Don't come after me.)

not offtopic, read the damn sig

morons

the al-Quaida link

[RIP]

now.. all we need to do is convince the us gov that al Quaida cells are receiving messages trough spam and we'll be rid of this for good!

Re:the al-Quaida link

While your at it convince them that Al Quaida is sending hidden messages in troll posts and flaimbait :)

Clancy

[jefu]

Or the not-so-hidden messages - like Tom Clancy's plot in which a hijacked (though by the pilot) airliner flies into a building...

Re:Clancy

[1u3hr]

Or the not-so-hidden messages - like Tom Clancy's plot in which a hijacked (though by the pilot) airliner flies into a building...

Not to mention the first episode of The Lone Gunmen where the CIA sends a plane on autopilot to crash into the WTC. I was somewhat amazed that I didn't see a word of commentary about this after the real event.

Hiding stolen money in "spam" distribution

[S3D]

There was a similar episode in V.Vinge _True Names_ Hacker steal several millions from a bank and transfered money to thousands accounts, thousand dollar each, himself including. He got only thousand but hide it among thousands others, making himself effectivly untraceble...

what does it take to get published on slashdot?

[mylefttoe]

damn, what does it really take to get on /. ? i've written better articles on the subject in the past, but do i get on slashdot, hell no. get with the programme. stop publishing two bit articles. to the folks at secure science corp - you're a bit late in the day.

Re:what does it take to get published on slashdot?

I'm interested in seeing you're way over the top articles - please share!

Hidden messages to terrorists in spam

[dav1ross]

I work in tech support for a small ISP in California. One day an elderly gentleman walked into our office and told me he was convinced that the spam he was receiving (especially the kind designed to poison bayesian filters) contained coded messages for al-Qaida terrorists, and that he had been forwarding them to the FBI! It took all my composure to assure him that this was not the case without busting up laughing in his face. We have yet to hear from the FBI, or from the local mental health clinic about this particular customer.

My proggie STOPS ALL HASHBUSTING IN ENGLISH!

[iamcf13]

CF13 does this by simply comparing all the 'words' in the subject line and body of an email against Grady Ward's Moby single word list and a second, smaller 'spamword' word list derived from the first word list by the user. Both word lists will deem email containing misspelled words or 'spammy' words as spam. Thus....

One more avenue to spam is denied usage by spammers.

By attacking this type of spam technique in this manner, all the overhead associated with Bayesian filtering is 100% completely unecessary.