They'll steal your name, your pet's name, the names of your nearest and dearest ... and then they will spam, spam, spam you...
Published: 29 June 2004 16:54 GMT
Spammers have started using spyware to steal personal information so they can customise the subject lines of unsolicited emails to increase their chances of being read.
Research by email security firm MessageLabs has revealed that spammers are targeting companies and individuals with unsolicited messages that have subject lines containing names, familiar words or phrases that have been stolen from the victim's computer.
This is possible once a computer has been compromised with a piece of spyware that can track keystrokes or scan documents and send the information back to the spammer.
MessageLabs' senior anti-spam technologist Matt Sergeant said the spam target is more likely to open an email if the subject line contains information that is directly relevant to them or their job.
"The idea is that by using familiar words and phrases, such as passwords, a pet's name or a company name, users will be more likely to open the email," Sergeant said.
The volume of spam has increased dramatically over the past two years, so much so that some security companies say the majority of email traffic is now spam. The problem intensified with the emergence of viruses and Trojans that were designed to infect unprotected computers and turn them into spam-sending zombies.
As the spam problem grows, so does the anti-spam industry; as a result, the spammers have started colluding with malware writers to try and increase their hit rates, according to MessageLabs.
Sergeant said that the lines between different email security threats are becoming more and more blurred.
"We increasingly find that spammers, virus writers and hackers are combining their malware to create evermore sophisticated email security threats," said Sergeant.
Maxine Holt, senior research analyst at Butler Group, said the spyware problem is potentially very serious. She said there is no way for a company to completely protect itself without disrupting every day business activities, so they should combine technology with education and enforce a security policy to reduce their risk as much as possible.
"Companies need to ask themselves what level of risk they are willing to accept in order to conduct their day-to-day business. Security is not just at the perimeter," Holt said.
Munir Kotadia writes for ZDNet UK
A spammer's priority is to get as many emails 'out...
Craig
It still gets me WHY do they go to such lengths to...
K Beswick
Ironic - when I read your article on Spyware my Sp...
Anonymous
Many years ago, a bank manager told me, " . .if yo...
Mitch
Craig: Your doubts are not founded on the facts: ...
Anonymous
You can be from a Distribution, Reseller or Vendor background but must have sold IT security based products extensively working with solutions that ...
Delivering a full suite of business-quality solutions, our product range includes business lines, business calls, business broadband, anti spam, ...
AD Scripting "TSM Backup experience "ILM Key Words: Exchange 2003, Windows 2003 Clustering, Active Directory 2008, OCS 2008 R2, Blackberry, Active ...
Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.
Stories from the web...
Copyright © 2008 CBS Interactive Limited. All rights reserved. Top of page
Digg
Slashdot
Del.icio.us
Stumble
Reddit
RSS Feeds
Tim Ferguson Exclusive: Former MySQL boss Marten Mickos talks open source Why Microsoft could become one of the "biggest friends of open source" and why Oracle getting its hands on MySQL could be "one of the biggest open source coups ever"...
Naked CIO Naked CIO: Cloud computing more expensive than we thought? Smart IT leaders will examine the impact of how they pay for tech