2019 Psychopathy, sadism, empathy, and the motivation to cause harm 2018 Voice Activated Hacks And Cocaine Noodles 2017 Fake News Is Fake News Spam Statistics 2016 2016 Census Surprise ATO Phone scam Spam Statistics 2015 2015 Large number of Security Vulnerabilities July 2015 Spam Statistics 2014 2014 Spam Statistics 2013 2013 Spam Statistics 2012 2012 The Genie Is Out Of The Bottle Trolling For Global Rage Another Spam La Nina Year Spam Statistics June 2012 Media Temple - Back On The Radar Good Christian Men Rejoice 2011 Now It's Just Plain Old Mail Fraud Microsoft Filters Form Not Content Peak Spam Security Shmecurity The Problem Of The Living Dead 2010 Quarantine Sick MS Computers? The Spam Season Starts Soon Creepy Conroy And The Internet Crimewave 2009 Seasons Greetings For The New Decade Phishing Phriendly Outlook Don't Go There Julie! Don't Go! Not Just Famous -- But IN-Famous! Hacked - When Will They Ever Learn? The E-mail Technology Trap Google Easy Money Scams 2008 We Wish You An Unspammy Xmas Terry Swope Spam Incident (2) Webcron Seduced By The Dark Side I've Won The Lottery Again Now I'm In Who's Who American Spam Terry Swope Spam Incident (1) Seven Steps To Internet Security Keeping My Powder Dry Myluvcrush.com Security Risk Spamhaus PBL End Game For Cashblasterpro.com Cashblasterpro.com Spammers The Spam Keeps On Coming McAfee Assess Risk By TLD The Time-Honoured Aussie Sport Of Bank Bashing Now We've Got Hand Spam - What Next? Internet Cops - Who Needs Smart Users When We Have Smart Software? 2005 Good Day To Me ... From 65.54.233.98? The Empire Strikes Back Remember me? TraciLFU4775 from AIM Yahoo regrets to announce ... an outbreak of computer viruses! Gold in them thar hills Florida Spam Zombies At It Again! Plaxo - Black, Grey or White? Unreal profits from Vocalscape Outsider Trading. Blars really does hate 'em I Don't Really Hate Them (much) Tiscali repeat Polish Spam on Rye Flogging A Dead Horse
PGTS Humble Blog Thread: Internet Security/Malware/Spam
	Gerry Patterson. The world's most humble blogger
Edited and endorsed by PGTS, Home of the world's most humble blogger
Spam Statistics June 2012
Chronogical Blog Entries: Prev: 23-May-2012 Official End Of The Dot-com Bubble? Next: 31-Jul-2012 Mobile Disruption:The iPhoney War
Date: Thu, 28 Jun 2012 20:30:58 +1000 As reported in May 2011, Spam seems to have peaked in 2010. Current figures indicate that the volumes of spam have declined from the 2010 peak and may have now reached a "steady state", with a pronounced seasonal variation.

In a previous blog post, your blogger proposed that spam may have peaked in 2009 and/or 2010. Unfortunately it is not possible to get an accurate picture because of changes in the way that data has been gathered.

The latest figures seem to confirm the trend observed in 2011. Spam seems to now follow a pronounced annual cycle with a large peak in September and an even larger peak in February. These peaks would co-incide with the end of Winter and the end of Summer in the northern hemisphere ... Or possible the end of Winter in the northern and the end of Winter in the southern hemisphere (?)

Consolidated Stats PGTS Mailhub.

The measures used against spam at the PGTS mailhub have evolved over the years ... Initially the only defence consisted of RTBL technology and a manually maintained ACCESS list.

Soon it became apparent that an additional content filter was required. After some initial testing Spam Assassin was deployed in production across all inboxes (with procmail).

A final defence was added to integrate the firewall with Spam Assassin and reported incidents.

Unfortunately the records from RTBL rejections prior to May 2010 were not archived. The changes in configuration and archiving of records makes it difficult to compare the different figures.

This is because records prior to 2007 are from the manually maintained ACCESS list, and don't really compare well with the Spam Assassin list (post 2007).

The nearest thing to a consistent record since 2007 is the Spam Assassinated list (below):

Spam Assassinated Stats PGTS Mailhub.

The peaks in Spam Assassinated data seem less prounounced ... It is probably fair to say that the Spam Assassinated mail has been more carefully crafted and has been dispatched from mail clients or servers that are better maintained than the general noise that is swatted down by RTBL.

There were some surprising results when total spam for the half year (Jan to June 2012) were compared with the country of origin (as calculated by IP address). Spain came out as the clear leader:

Total Spam by Country Stats PGTS Mailhub.

Overall it seems that spam has levelled out. This is more likely due to economic and business constraints than the efforts of law-makers ... Most of which is a simple waste of space.

Is There Method In Their Madness?

Early in the previous decade, your blogger started some research into Spam arriving at the PGTS Domain. This resulted in a series of articles, which contained predictions about spam.

Some of the predictions were correct. However quite a few of them proved incorrect.

One of the trends your blogger noticed at the time was the adoption of spam by organised cyber-crime. A trend that has continued to the present day. This is probably one of the reasons that spam traffic now appears to conform with economic constraints ... Cyber-crime is a business after all, and like any commercial enterprise must make a profit in order to survive.

And it might be possible that these days, spam is considered old school? Perhaps all the modern cyber-criminals are busy constructing bots to crawl facebook pages?

Still there's no school like the old school, as they say ...

A recent article by Cormac Herley from Microsoft Research, proposes that the over-all viability of the business model for (so-called) Nigerian spammers is highly susceptible to time-wasting (false positives). This is because once the (so-called) Nigerian spammer has identified a mark, he/she must open email negotiations with the potential victim to prepare them for "the sting". And this preparatory work represents a considerable investment of time and effort. If the mark fails to convert after negotiations have commenced, the cost to the Spammer (in time and effort) can be considerable.

Herley uses possibly too much mathematics to prove the bleeding obvious. However he proposes the interesting thesis that the poor grammar and spelling, the improbable choice of role names and scenarios are in effect an anti-false-positive filter ... In other words the only person who would fall for it is likely to be ignorant and/or naive about the Internet and probably dull-witted ... Which is exactly the target audience! After all the scammer does not want to engage with someone sharp-witted and well informed about 911/Mail Fraud and Internet scams (Note: the same thesis would apply for penis enlargement scams which often include the strategy of sexual arousal -- a time honoured method of making human males dull-witted).

Whether the scammers have deliberately contrived their spam to appeal to the bottom rung of the IQ ladder, or whether it has naturally evolved this way by old-school Darwinian selection is of academic interest only. Spammers have to make a profit, and wasteful or unprofitable activities might force them to seek other employment ... Mr. Herley has an interesting thesis and it certainly may explain the apparent stupidity and banality of 911 emails.

It also suggest that spam-baiters, if they can pass themselves off as less intelligent may end up costing 911 scammers a lot of effort.

Of course there is always the worrying possibility that some spammers keep on spamming because they just love their work ...

Other Blog Posts In This Thread:

• Prev In Thread: 17-Mar-2012 Media Temple - Back On The Radar
• Next In Thread: 31-Aug-2012 Another Spam La Nina Year

Copyright     2012, Gerry Patterson. All Rights Reserved.