[IP] Spam: Born In The USA

To: Ip <ip@xxxxxxxxxxxxxx>
Subject: [IP] Spam: Born In The USA
From: David Farber <dave@xxxxxxxxxx>
Date: Fri, 13 Aug 2004 13:39:56 -0400
List-help: <http://v2.listbox.com/doc/help_sub?list_name=ip@v2.listbox.com>
List-id: <ip@xxxxxxxxxxxxxx>
List-software: listbox.com v2.0
List-subscribe: <mailto:subscribe-ip@v2.listbox.com>, <http://v2.listbox.com/subscribe/?listname=ip@v2.listbox.com>
List-unsubscribe: <mailto:unsubscribe-ip@v2.listbox.com>, <http://v2.listbox.com/member/unsubscribe/?listname=ip@v2.listbox.com>
Reply-to: dave@xxxxxxxxxx
Sender: owner-ip@xxxxxxxxxxxxxx



Begin forwarded message:

From: Gunnar Helliesen <gunnar@xxxxxxxxx>
Date: August 13, 2004 11:44:55 AM EDT
To: Dave Farber <dave@xxxxxxxxxx>
Subject: Spam: Born In The USA

Prof. Farber,

For IP if you wish.

http://www.informationweek.com/story/showArticle.jhtml?articleID=28700163

An analysis by messaging-filtering vendor CipherTrust says the largemajority of the world's spam comes from a few spammers within theUnited States.

By Gregg Keizer, TechWeb News

A survey released Thursday said that nearly all the world's spam isspewed by a limited number of hard-core spammers within the UnitedStates.

Based on analysis of the spam it blocked for its 1,000-plus clientsduring May, June, and July, message filtering firm CipherTrust saidthat 86% of all spam originated in the United States.

Although U.S.-based IP addresses accounted for only 28% of the totaladdresses used to spam--tying South Korea for the top spot--spammersoverwhelmingly favor U.S. domains. Messages from Korean IP addresses,in comparison, accounted for just 3% of all spam. Similarly, China andHong Kong, where about 23% of all spamming IP addresses reside, accountfor just 2.6% of all spam.

"That was quite a surprise," said Dmitri Alperovitch, a researchengineer at CipherTrust. "The percentage of spamming IP addresseswithin the U.S. is in line with other surveys, but in the actual numberof messages, the U.S. is responsible for the vast bulk of spam."

CipherTrust's numbers run counter to those in other surveys, whichclaim that a much larger percentage of spam comes from outside U.S.borders. Commtouch, for example, recently estimated that the U.S.accounted for only 56% of the world's spam.

Alperovitch defended his company's data by pointing out that otherstudies rely on spam-gathering honey pots, while CipherTrust talliesonly those actual messages it intercepts. "Those two approaches arequite different," he said, "because some spammers are actuallytargeting specific companies with messages that the honey pots wouldn'tsee."

CipherTrust's numbers also bolstered the long-held theory that a fewkingpin spammers are responsible for most of the spam. "The bulk ofU.S. spam is coming from a very limited set of IPs with high-bandwidthconnections," said Alperovitch, who estimated that the high-volumespamming addresses number fewer than 10,000 and the number of spammersat less than 200.

The United States is the origin of choice for spammers, saidAlperovitch, because of the plentiful supply of cheap high-speedbandwidth. "Spammers need big pipes, and they don't want to pay muchfor it," he said.

That explains the low percentage of spam messages originating fromoverseas' IP addresses. The lack of cheap bandwidth outside the UnitedStates is stymieing spammers' attempts to scale up the volume of theirmailings to U.S. sizes. In fact, the majority of spam that does comefrom countries other than the United States originates withzombies--hijacked computers typically with high-speed, high-volumeaccess to the Web, giving spammers a free ride, bandwidth-wise.

Zombies are less of a problem in the United States, said Alperovitch,because of the inexpensive access spammers can buy here, as well assome recent efforts by major Internet providers to clamp down onzombies.

Cable provider Comcast, for instance, launched an effort in May toblock its members' cable-connected machines from being used byspammers; it claimed a one-third reduction in spam coming out of itsnetwork. "We also saw a significant drop-off in spam from Comcast afterMay," said Alperovitch, who added that the decrease was in the 30%range.

Although the United States has anti-spam laws in place at both thestates and federal levels--the latter through the Can-Spam Act thatwent into effect in January--critics have said that fighting spamlocally doesn't do any good when the problem's global.

CipherTrust's numbers may mean it's possible to put at least a partiallid on spam through laws and enforcement solely within the UnitedStates. "Enforcement of Can-Spam could go a very long way towardreducing spam," Alperovitch said.









--
Gunnar Helliesen   | Bergen IT Consult     | Open Source activist
Systems Consultant | Bergen, Norway        | Jaguar enthusiast
gunnar@xxxxxxxxx   | www.bitcon.no/~gunnar | Märklin collector

-------------------------------------
You are subscribed as roessler@xxxxxxxxxxxxxxxxxx
To manage your subscription, go to
 http://v2.listbox.com/member/?listname=ip

Archives at: http://www.interesting-people.org/archives/interesting-people/

Prev by Date: [IP] Cringley: Why We Send So Many Americans to Prison and Probably Shouldn't
Next by Date: [IP] EFFector 17.29: Calling All Tech-Savvy Lawyers!
Previous by thread: [IP] Cringley: Why We Send So Many Americans to Prison and Probably Shouldn't
Next by thread: [IP] EFFector 17.29: Calling All Tech-Savvy Lawyers!
Index(es):
- Date
- Thread