Archive for 2010/07/24

Traffic Management, Connection Management and User Management

Posted: 2010/07/24 in Bandwidth Management, Blocking, Cybercrime, Education / Awareness, Filtering, Network Security, Stats / reports

Traffic Management

Unwanted senders are identified and connections to the mail server are slowed down using features embedded in the TCP protocol. Incoming volumes of known spam are significantly slowed, while ensuring legitimate email is expedited.
In July, MessageLabs services processed an average of 4.4 billion SMTP connections per day, of which 51.3% were throttled back as a result of traffic management controls for traffic that was unequivocally malicious or unwanted. The remainder of these connections was subsequently processed by MessageLabs Connection Management controls and Skeptic™

Connection Management

Connection Management is particularly effective in stopping directory harvest, brute force and email denial of service attacks, where unwanted senders send high volumes of messages to force spam into an organization or disrupt business communications. Connection Management works at the SMTP level using techniques that verify legitimate connections to the mail server, using SMTP Validation techniques. It is able to identify unwanted email originating from known spam and virus sending sources, where the source can unequivocally be identified as an open proxy or a botnet, and rejects the connection accordingly. In July, an average of 56.1% of inbound messages was intercepted from botnets and other known malicious sources and rejected as a consequence.

User Management

User Management uses Registered User Address Validation techniques to reduce the overall volume of emails for registered domains, by discarding connections for which the recipient addresses are identified as invalid or non-existent. In July, an average of 9.2% of inbound messages was identified as invalid; these were attempted directory attacks upon domains that were therefore prevented.

Source: http://www.messagelabs.com/mlireport/MLI_2010_07_July_FINAL.PDF

4,425 new websites per day harboring malware, spyware and adware, an increase of 176.9 percent since June

Posted: 2010/07/24 in Blocking, Education / Awareness, Filtering, Network Security, Privacy / Data Protection, Stats / reports

“As far as spammers are concerned, any tactics that make it harder to block their spam emails are going to be exploited,” said Paul Wood, MessageLabs Intelligence Senior Analyst, Symantec Hosted Services. “When spammers include a shortened URL in spam messages, these shortened hyperlinks contain reputable and legitimate domains, making it harder for traditional anti-spam filters to identify the messages as spam based on the reputation of the domains found in the spam emails.”

MessageLabs Intelligence found that on average one website visit is generated for every 74,000 spam emails containing a shortened URL link. The most frequently visited shortened links from spam received more than 63,000 website visits.

Other report highlights:

Spam: In July 2010, the global ratio of spam in email traffic from new and previously unknown bad sources was 88.9 percent (1 in 1.12 emails), a decrease of 0.4 percentage points since June.

Web security: Analysis of web security activity shows that 30.5 percent of malicious domains blocked were new in July, an increase of 0.2 percentage points since June. Additionally, 13.0% of all web-based malware blocked was new in July; an increase of 0.5 percentage points since last month. MessageLabs Intelligence also identified an average of 4,425 new websites per day harboring malware and other potentially unwanted programs such as spyware and adware, an increase of 176.9 percent since June.

Geographical Trends:

--  Spam levels in Luxembourg rose to 2.4 percentage points to 93.5
    percent in July positioning it as the most spammed country.
--  In the US, 89.8 percent of email was spam and 88.1 percent in Canada.
    Spam levels in the UK were 87.8 percent.
--  In the Netherlands, spam accounted for 90.4 percent of email traffic,
    while spam levels reached 88.6 percent in Australia and 89.5 percent
    in Germany and 91.8 percent in Denmark.
--  Spam levels in Hong Kong reached 90.6 percent and 86.7 percent in
    Singapore. Spam levels in Japan were at 86.2 percent and 92.1 percent
    in China.
--  Virus activity in Taiwan was 1 in 50.0 emails, keeping it as the most
    targeted for email-borne malware in July.
--  Virus levels for the US were 1 in 520.1 and 1 in 430.8 for Canada. In
    Germany, virus levels were 1 in 487.8, 1 in 767.7 for the Netherlands,
    1 in 516.3 for Australia, 1 in 398.9 for Hong Kong, 1 in 874.5 for
    Japan and 1 in 696.1 for Singapore.
--  New Zealand became the most targeted for phishing attacks in July with
    1 in 111.2 emails comprising a phishing attack.


The July 2010 MessageLabs Intelligence Report provides greater detail on all of the trends and figures noted above, as well as more detailed geographical and vertical trends. The full report is available at http://www.messagelabs.com/intelligence.aspx___
Source: http://www.marketwatch.com/story/symantec-announces-july-2010-messagelabs-intelligence-report-2010-07-22

How To Easily Block Adult Sites From Your Kids

Posted: 2010/07/24 in Blocking

http://www.softsailor.com/how-to/33907-how-to-easily-block-adult-sites-from-your-kids.html

Enterprise filters block political Sex Party website

Posted: 2010/07/24 in Blocking, Filtering

Corporate web filters at organisations like Shell and the National Australia Bank (NAB) are blocking web access to the AEC-registered Australian Sex Party

http://www.itnews.com.au/News/220660,enterprise-filters-block-political-sex-party-website.aspx

Bad Connection: Inside the iPhone Network Meltdown

Posted: 2010/07/24 in Bandwidth Management, Education / Awareness, Mobile tech

AT&T had seen something like this coming. Almost as soon as the first iPhone was introduced in 2007, the carrier realized it might run short of bandwidth. Within just a few months, the first wave of iPhone customers was already sucking down about 15 times more data than the average smartphone customer and 50 percent more than AT&T had itself projected

http://www.wired.com/magazine/2010/07/ff_att_fail/

T-Mobile: providers should pay to serve high-bandwidth content

Posted: 2010/07/24 in Bandwidth Management, New Business Models

Taking a position that will inflame proponents of net neutrality, René Obermann, CEO of Deutsche Telekom, T-Mobile’s parent company, claimed that pricing should be tiered so that some types of traffic – such as mobile video or music – would be charged at a different rate to ensure guaranteed quality of service or premium delivery with higher transfer rates.

http://www.geek.com/articles/mobile/t-mobile-providers-should-pay-to-serve-high-bandwidth-content-20100722/

Belgian Banks Keep Silent About Security Incidents

Posted: 2010/07/24 in Cybercrime, Education / Awareness, Enforcement, Network Security, Privacy / Data Protection, Public Policy

Belgian authorities claim that Belgian banks are not reporting security incidents. Authorities have conducted a large scale investigation over the past 3 years into online banking fraud whereby Russian and Central-European criminals were stealing money using oftentimes unemployed intermediaries.

The criminals were able to plunder accounts by distributing malware, specifically coded for that goal. The malware would remain inactive until computer users would visit their online banking service. While using that service an error would appear onscreen after which the user would need to enter a code a second time. During that second attempt the code would be sent to the criminals.

The criminals were able to continue their work because they were withdrawing funds lower then 4,000 euro per withdrawal. That’s just below the critical level which would have made banks suspicious.

However, investigations were also hampered by a lack of notifications to the police. The Belgian justice department is of the opinion that banks should always report such incidents.

Dutch language article: http://tweakers.net/nieuws/68758/banken-houden-incidenten-van-gehackte-bankrekeningen-stil.html

In many States in the US legal obligations (for banks and other companies) to report cybercrime incidents already exist. This is not yet the case in Europe

Hackers release software to break GSM encryption

Posted: 2010/07/24 in Cybercrime, Network Security, Privacy / Data Protection

Dutch media are reporting that hackers have released software named “Kraken” which can be used to hack into the so called A5/1 security of GSM mobile networks. It enables the user to eavesdrop on GSM conversations (if certain conditions have been met).

Dutch language article: http://tweakers.net/nieuws/68752/hackers-geven-software-vrij-om-gsm-encryptie-te-kraken.html

UEBO-PlayOn Partnership to Bring Extensive Internet Video Content on TV

Posted: 2010/07/24 in New Business Models

With the PlayOn partnership, UEBO device users have access to rich Internet video content on their TVs. Content from Hulu, Netflix, CBS,ESPN, MLB, CNN and YouTube can be easily browsed and played using a simple remote control

http://iptv.tmcnet.com/topics/iptv/articles/93071-uebo-playon-partnership-bring-extensive-internet-video-content.htm

Gadgets -Atos Origin and AuthenTec Offer E-Book Solution for Taiwanese Mobile Operator

Posted: 2010/07/24 in New Business Models, Tech Evolution

The e-book digital rights management (DRM) solution is offered as a copyrighted book content for download for Far EasTone’s e-book clients using notebook and netbook PCs and a broad range of mobile phones. The solution was commercially launched earlier this month.

AuthenTec DRM is the only open standard client-side and server-side DRM solution, combining ease-of-use with multi-platform support for e-book users and carriers offering e-book/e-reader services

http://gadgets.tmcnet.com/topics/gadgets/articles/93043-atos-orig-and-authentec-offer-e-book-solution.htm

E-Mail, Social Media Conversations Real-Time Translated in 50+ Languages with Ortsbo

Posted: 2010/07/24 in Education / Awareness, New Business Models, Tech Evolution

To enable residents of the global village to understand and in doing so interact with each other much more effectively, Intertainment Media and partner Hale Technologies have launched a solution named Ortsbo which they say is the world’s first, multi-client, multi-conversation, real time translation platform for social media and e-mail

http://ivr.tmcnet.com/topics/ivr-voicexml/articles/93028-e-mail-social-media-conversations-real-time-translated.htm

KPMG Study Reveals U.S. Consumers Becoming Increasingly Confident With “Mobile Wallet”

Posted: 2010/07/24 in Education / Awareness, Mobile tech, Stats / reports

Results from a recent study conducted by the audit, tax and advisory firm, KPMG LLP, has found that mobile banking and the use of mobile devices such as cell phones, smartphones, and personal digital assistants for financial transactions and payments are increasingly gaining acceptance among U.S. consumers

http://telecom-expense-management.tmcnet.com/topics/mobile-management/articles/92989-kpmg-study-reveals-us-consumers-becoming-increasingly-confident.htm

Skype’s New iPhone App Update Which Enables Multitasking Could Change the Industry

Posted: 2010/07/24 in Mobile tech, Tech Evolution

during a call, a user can keep the conversation going while he/she switches to another task, such as checking a movie listing or reading an email, the company said

http://skype-news.tmcnet.com/skype/articles/92715-skypes-new-iphone-app-update-which-enables-multitasking.htm

Google Invests $5.75 Million in Online Marketing Startup

Posted: 2010/07/24 in Google, Online advertising

“Trada’s unique model brings search marketing expertise to a wide range of businesses that lack the resources and expertise to effectively run large-scale campaigns themselves”

http://small-business-voip.tmcnet.com/topics/smb-voip/articles/92706-google-invests-575-million-online-marketing-startup.htm

A Crystal Clear Message – Skype and Google tv Are Coming to Your Television

Posted: 2010/07/24 in Google, New Business Models, Tech Evolution

Crystal is a media streaming service for TV, films, music on demand, karaoke, interactive gaming and TV show auditions. Crystal will unify existing Everyman HD cameras along with legacy televisions (in non techie-terms, this means any HD-compatible television) so that they can play Skype HD television, which may operate on the Google tv framework.

http://voice-quality.tmcnet.com/topics/voip-quality/articles/92692-crystal-clear-message-skype-google-tv-coming-your.htm

Interpret: Online Video Consumption, Social Networking Continue To Grow

Posted: 2010/07/24 in Education / Awareness, Mobile tech, Stats / reports

According to report on a study on the topic “New Media Measure” conducted by Interpret, an entertainment, media and technology market research firm, there will be continued proliferation of social networks, further growth of streaming video and the domination of free mobile apps in the marketplace

http://business-video.tmcnet.com/topics/business-video/articles/92638-interpret-online-video-consumption-social-networking-continue-grow.htm

Adobe Online Marketing Suite, Powered by Omniture, Updated with New Social Media and Mobile Features

Posted: 2010/07/24 in Mobile tech, Online advertising

These new features include advanced bid strategies for Facebook ads, image ad support for the Google Content Network to more easily create and deliver ads, real-time personalization of content for native Blackberry and Android mobile apps, as well as reporting and dashboarding enhancements

http://smart-grid.tmcnet.com/news/2010/07/22/4913596.htm

Ofcom Forces UK Broadband ISPs to Make Users Aware of Complaint Handlers

Posted: 2010/07/24 in Public Policy

Ofcom has today announced new measures that will force UK broadband ISPs into making their customers aware of the official complaint handling processes (Alternative Dispute Resolution (ADR) schemes). Sadly Many ISPs continue to hide such details away and some make no mention of them at all. The regulator claims that, in 2009, approximately 3 million consumers failed to resolve complaints with their phone and broadband provider after 12 weeks. In addition, three quarters (77%) of those consumers were found to be unaware that a resolution service existed to investigate their complaints

http://www.ispreview.co.uk/story/2010/07/22/ofcom-forces-uk-broadband-isps-to-make-users-aware-of-complaint-handlers.html

ORG Calls on Ofcom to Start its UK ISP Copyright Infringement Code Again

Posted: 2010/07/24 in Public Policy, Three Strikes

The Open Rights Group (ORG) has called on Ofcom to start again with its Draft Initial Obligations Code of Practice on Copyright Infringement because, they claim, it misses vital requirements to outline the standards of evidence reported by Rights Holders

http://www.ispreview.co.uk/story/2010/07/23/org-calls-on-ofcom-to-start-its-uk-isp-copyright-infringement-code-again.html

Revisiting the King of Spam

Posted: 2010/07/24 in Blocking, Education / Awareness, Filtering

We keep a close eye on spam and the malware that drives spam production. Our recent report highlighted some of the worst offenders, and Rustock is without a doubt the leader of the pack. Over the last six months, the proportion of Rustock spam in our spam traps peaked to nearly 60% and it has never returned to levels lower than 20% of total spam

http://www.m86security.com/labs/traceitem.asp?article=1362

I know what you ate last summer

Posted: 2010/07/24 in Cybercrime, Education / Awareness, Privacy / Data Protection

The company operates 64 stores in New Zealand, three in England, nine in Australia and one in Ireland

http://risky.biz/hell

BofA’s online banking site, mobile apps experiencing outage

Posted: 2010/07/24 in Education / Awareness, Network Security

Access to Bank of America’s online banking and mobile banking sites appear to be down this afternoon, a widespread problem that appears to have started before 2 p.m. PT  – based on tweets reporting the problem

http://www.zdnet.com/blog/btl/bofas-online-banking-site-mobile-apps-experiencing-outage/37155

Microsoft: IE8 barred 1 billion malware downloads

Posted: 2010/07/24 in Blocking, Cybercrime, Education / Awareness, Filtering

Nearly 26 percent of the Web population is using IE8, and the company’s SmartScreen filter is blocking “five times more malware month on month”

http://news.cnet.com/8301-13506_3-20011538-17.html

Report: NSA, Pentagon officials linked to child porn

Posted: 2010/07/24 in Cybercrime, Education / Awareness, Public Policy, Stats / reports

Dozens of National Security Agency, DARPA, and other Pentagon officials purchased and downloaded child pornography over the Internet, according to a report in The Boston Globe on Friday.

The newspaper said it obtained more than 50 pages of documents revealing that the government workers identified in an internal probe included NSA contractors with top secret clearances, one of whom has fled the country and is believed to be hiding in Libya.

Another involved a person working at the supersecret National Reconnaissance Office, which operates the military’s spy satellites, who was transferred to a field office and has not been charged with a crime

After a series of other recent reports highlighted how federal employees were using taxpayer-funded computers to watch porn at work, the House of Representatives voted 239 to 182 earlier this month to require federally-funded networks to block the viewing or downloading of pornographic materials.

http://news.cnet.com/8301-13578_3-20011494-38.html

NASA Astronauts Hacked By Twitter Spammers

Posted: 2010/07/24 in Cybercrime, Privacy / Data Protection

http://gizmodo.com/5594864/nasa-astronauts-gets-hacked-by-twitter-spammers

Is MMS Just Like Limewire? New Lawsuit Against AT&T, Verizon, Sprint & T-Mobile Says So…

Posted: 2010/07/24 in Illegal File Sharing, Litigation, Mobile tech

All the big US mobile operators have been sued — including AT&T, Verizon Wireless, Sprint and T-Mobile — under the claim that their MMS platforms are really illegal file sharing networks, and that these operators are no different than Limewire or Gnuttella

Another round of litigation as a vaccine against more litigation?

http://www.techdirt.com/blog/wireless/articles/20100723/01045710327.shtml

Good News: Violating Terms Of Service Is Not Hacking; Bad News: Circumventing Weak Tech Blocks Might Be

Posted: 2010/07/24 in Jurisprudence, Litigation

http://www.techdirt.com/articles/20100723/03093210331.shtml

New Webinar: Using ‘Free’ As A Part Of Your Business

Posted: 2010/07/24 in Education / Awareness, New Business Models

http://www.techdirt.com/articles/20100723/10114710341.shtml

Newspaper Chain’s New Business Plan: Copyright Suits

Posted: 2010/07/24 in Copyright, Education / Awareness, New Business Models

Borrowing a page from patent trolls, the CEO of fledgling Las Vegas-based Righthaven has begun buying out the copyrights to newspaper content for the sole purpose of suing blogs and websites that re-post those articles without permission. And he says he’s making money

http://www.wired.com/threatlevel/2010/07/copyright-trolling-for-dollars/

Software giant SAS loses copyright case in London

Posted: 2010/07/24 in Copyright

The judge accepted the right of company to copy the functions of a piece of software, as long as it does not copy source code, without breaking copyright

http://www.theregister.co.uk/2010/07/23/sas_software_copyright/

Ex-staffer pleads guilty to massive T-Mobile data scam

Posted: 2010/07/24 in Mobile tech, Privacy / Data Protection

The illegal sale of millions of subscriber records was revealed by the Information Commissioner Christopher Graham last November, as part of a campaign for tougher sentences for data thieves

http://www.theregister.co.uk/2010/07/23/tmobile_ico/