11 August 2006
RNDR Spam increase seen between 1600% and 4000%
Spam has been reported to be up by between 1600% and 4000% by CMS on a corporate level.
Spammers have changed their methods using RNDR (Reverse Non-Delivery Report).This method involves a spammer to send a spam to a fake account on their server and to address it from the actual intended recipient of the spam. Then when their server creates and sends the NDR it sends it to the victim. This bypasses most spam filters by making it seem that the message originated at the victim.
In the past email accounts would be harvested from the Internet and then used to send these spams, but currently there is a trend developing to create random strings to generate valid email addresses. The problem with this is that it can greatly overload an email server and can also be used as a DOS attack. This technique does successfully reach valid email accounts, but it creates a huge increase in email volume as well.
Aside from the extra messages and traffic, companies also run the risk of being blacklisted for generating spam that actually never really came from them.
Spammers have changed their methods using RNDR (Reverse Non-Delivery Report).This method involves a spammer to send a spam to a fake account on their server and to address it from the actual intended recipient of the spam. Then when their server creates and sends the NDR it sends it to the victim. This bypasses most spam filters by making it seem that the message originated at the victim.
In the past email accounts would be harvested from the Internet and then used to send these spams, but currently there is a trend developing to create random strings to generate valid email addresses. The problem with this is that it can greatly overload an email server and can also be used as a DOS attack. This technique does successfully reach valid email accounts, but it creates a huge increase in email volume as well.
Aside from the extra messages and traffic, companies also run the risk of being blacklisted for generating spam that actually never really came from them.
