Slashdot Mirror

← Back to Stories (view on slashdot.org)

US and China Top List of Spam-Relaying Countries

Posted by Zonk on from the don't-forget-the-eggs dept.

jcatcw writes "On Thursday Sophos released a new set of global statistics pointing out the biggest spam relaying countries in the world. Toping the list between April and June of this year were the US and China. 'Sophos senior security consultant Carole Theriault said that while the U.S. remains the top spam dog, there results show an urgent need for countries to join together and take global action. "Once a machine is compromised, it is often used to send out spam for a variety of campaigns," she said. "In a matter of seconds, we can see compromised systems send messages on a dozen different topics from stock scams to diet drugs." Paul Ducklin, Sophos Asia Pacific head of technology, said that spammers are ready to "borrow" any computer illegally to send e-mail regardless of the location.'"

4 of 92 comments (clear)

  1. Europe getting in on the action too by antifoidulus · · Score: 3, Informative

    If you want to count the EU as one country(which the EU seems to want to do for things that benefit it, but seem wont to do when the statistics are less than flattering) Europe reigns supreme:

    Europe now has six entries in the Dirty Dozen, which when combined, account for even more spam-relaying than the U.S.

    --
    Monstar L
    1. Re:Europe getting in on the action too by El_Muerte_TDS · · Score: 2, Informative

      EU is not Europe
      Just like the USA is not America

      (but that doesn't change the fact that there are 5 EU countries in that list totaling to 17.9%, less than the USA)

  2. Our efforts seem to be paying off by aszaidi · · Score: 4, Informative

    I'm glad to see no mention of Pakistan in there. It used to be one of the biggest sources of spam until recently. I work for a large ISP here and we take spam seriously. We recently started blocking all outbound emails from customers, restricting them to our state-of-the-art (Linux + Exim + SA etc.) servers. Even now, a single Spamcop report can have offending customer's email completely blocked. Corporate user or no corporate user.

    The bigger task is getting all the other ISPs in the country to agree to implement this instead of bending over backwards to please their customers and allow them to broadcast whatever their virus-infected PCs can conjure. The major technical players have formed a network-admins group which discusses such topics and so far, the response has been quite positive.

    It will likely take a while before these types of policies are enforced in countries which are only just starting to get online.

  3. Re:Since spam relays have shifted from servers.... by ptbarnett · · Score: 3, Informative
    And the solution to zombies on broadband is really simple.

    Blocking port 25 outbound is a strategic nuclear strike, where all that is needed is a carpenter's hammer.

    However, I wouldn't be opposed to it as long as:

    • Applying for an exemption is as simple as filling out a online form, without talking to someone in an India call center and explaining why I want it done.

    • Third-party mail servers universally implement port 587 (the Mail Submission Agent port), while requiring username/password authentication.