Next Generation Spam Zombies Will Use Data Mining

← Back to Stories (view on slashdot.org)

Next Generation Spam Zombies Will Use Data Mining

Posted by ryuzaki0 on Friday April 28, 2006 @06:46AM from the hate-these-new-fast-zombies dept.

branewashd writes "The Globe and Mail is covering some new research on the future of spam. The paper 'Spam Zombies from Outer Space', from researchers at the University of Calgary, will be presented on Sunday at the European Institute for Computer Anti-Virus Research conference. According to the paper, the next generation of spam zombies will employ 'sophisticated data mining of their victims saved email'. When a computer is turned into a spam zombie, it will first be mined of its address book, mail client configuration, and mail archives. Then the spam program will use Natural Language Processing techniques to send spam messages to the victim's contacts that look a lot like messages that the user has previously sent. The researchers predict that this will be extremely hard to detect, but they do offer a few suggestions for combating it."

6 of 133 comments (clear)

Min score:

Reason:

Sort:

Data Mining? by ericlondaits · 2006-04-28 06:55 · Score: 2, Interesting

That doesn't sound like data mining, nor complicated data mining even... just a simple markoff-chain driven text generator would do. Anything more complicated than that wouldn't be data mining either, but rather computer linguistics.

--
As a Slashdot discussion grows longer, the probability of an analogy involving cars approaches one.
The best cure for such spam is... by Penguinisto · 2006-04-28 06:56 · Score: 1, Interesting

...yes, yes - Mac OSX and Linux.
But besides that, maybe an ISP should by default block all but a few outbound ports unless the user requests them specifically (either via a web interface @ the ISP or by phone)?
Or for those who recoil under privacy threats by such a thing, maybe offer a locked-all-to-hell ISP service for $x.00 (web, mail, maybe some game port ranges, and that's it) and a "we'll assume you have a clue about what you're doing" service that leaves ports as they are now for $x+y.00 (nominal enough to scare off the average users, but low enough to prevent gouging and such).
dunno... prolly a bad idea and yes full of holes (technical and otherwise), but an idea nonetheless.
/P

--
Quo usque tandem abutere, Nimbus, patientia nostra?
Re:Same reply for all these threads.. by Anonymous Coward · 2006-04-28 07:10 · Score: 1, Interesting

Having seen a preview of Windows Vista, Microsoft seems to be heading in the right direction. In Vista, everything you do will run as a "standard user", even if you are an administrator. If you attempt to do something that requires elevated priviledges, you will need to go through a system controlled dialog that confirms this. There are visual cues on these activities that are consistent from the browser through to the end-user applications.

While I'm not a Microsoft advocate, I feel that are trying to improve the situation.
Well poisoners... by mengel · 2006-04-28 07:17 · Score: 3, Interesting

These are attempts to poison word-based beysian(sp?) spam filters.
If you mark enough of these random collection of useful word messages as spam, your beysian spam filer will start filing real, useful email as spam, and you will eventually decide the filter doesn't work and turn it off...
Of course, if you feed your filter just the headers and stuff that actually looks like spam, and not the blocks of random words, it can still learn useful things.

--
- "History shows again and again how nature points out the folly of men" -- Blue Oyster Cult, 'Godzilla'
1. Re:Well poisoners... by coaxeus · 2006-04-28 08:13 · Score: 2, Interesting
  
  Correct you are. I admin systems that process close to a half million messages a day average, the vast majority of that is spam. Bayesian classification is one of the 5-10 layers that contributes to a spamassassin score on these sysetms. Bayesian is probably the most useful part of the anti-spam system, but also the most annoying to administer because of this poisoning. I can't even count the number different methods I've tried to keep an accurate bayesian database since the poisoning started, and number of databases I've had to wipe and start from scratch. If evolution wasn't broken and stupid people did less breeding and more dying, we wouldn't have the small percentage of idiots that keep spammers in business, or the jackass spammers in the first place.
  
  --
  My name is coaxeus, and I approve this message. In fact, I think it is awesome.
Unfortunately this is not new or next generation. by eronysis · 2006-04-28 07:27 · Score: 2, Interesting

I regularly recieve emails of exactly this nature to several addresses I use to deal with shady/or poorly managed state agencies. I noticed address mining of this sort at least 16 months ago. I typically know that a given shop will be calling for some sort of aid when I start getting my own (slightly modified and links added) back with own signature attached(once again slightly mispelled).