Spam

What is Spam and who is behind it?

First of all, we are not referencing the mystery meat jellied in a can, but rather unwanted electronic mail and messaging polluting the Internet. Spam is the electronic version of junk mail sent through the postal service and is one of many malicious strategies employed over the Internet by cybercriminals or unscrupulous advertisers.

Spam is distributed in bulk, so sent to the masses. Distributors of spam are known as spammers and their primary goal is to reach as many end-users as possible in hopes of carrying out one or more payloads. Payloads could be scams that sell fake programs or tools, phish for vital data, secretly download malware, or even as basic as unsolicited advertisements. The cost to distribute spam is minimal and is roughly a manner of obtaining email addresses or lists, whether through purchase or deceptively, i.e. theft. The bigger cost is borne by the owners of the broadband, which is maliciously violated, or recipients, who fall victim to scams. According to many trusted computer security sources, including SpamLaw.com, Spam 45% of all Email is Spam.

24 percent email is spam
45% of all Email is Spam – Source: SpamLaw.com

While email spam ranks high on the list of well-used spam strategies, other online media may be infiltrated or violated. Let’s take a closer look at some of these delivery trucks:

Email Spam – Email spam is a reminiscence of junk mail delivered through the postal service. However, not every email spam communication is full of unwanted advertisements. Cybercriminals invest a lot of stolen money studying human behavior and learning better ways to cheat PC users out of money, gather vital data or drop malware onto vulnerable systems. Email spam can be cleverly shaped and can spoof legitimate businesses or persons, i.e. family or friends. Email spam may contain an infectious link or attachment and when clicked, can secretly download malicious programs or redirect victims to fictitious web pages and forms to deceptively gather vital data.

Instant Messaging – Spam delivered via messaging clients, such as Skype, Yahoo! Messenger, Google Talk, Windows Live, etc. Instant messaging channels are attractive because most clients are not blocked by firewalls.

Social Networking – Security experts have seen a spike in social networking spam campaigns, since these sites, i.e. Twitter or Facebook, are not only popular and widely used, but offer a lax and friendly environment. Spammers hack account owners to dupe trusting associates, i.e. friends or followers and may post an infectious link, attachment, or video that when click unleashes a nasty infection or malicious program.

Search Engines

Spamdexing is when cybercriminals alter HTML pages and use black hat SEO (search engine optimization) tricks to manipulate the ranking of their malicious websites, having them placed high on search engine lists.

Video Sharing Sites

In the past, spammers posted infectious links on sites such as YouTube, however, such practice of allowing links has been discontinued. Now spammers spoof sites like YouTube and mislead the victim by giving it a juicy or sensationalized name and description, i.e. Death of Lady Gaga or Live Suicide, etc. When the link is clicked, the payload is unleashed, i.e. malware dropped, rerouted to a malicious website or survey generating revenue for a cybercriminal, etc.

Spam may be delivered via zombie networks or using another malware form, i.e. a Trojan. Payloads might be a fake form used to collect vital data, or dropped malware that installs a backdoor giving a hacker remote access and control of the infected system. Often dropped malware is absent an interface, keeping the victim in the dark. Today’s malware is stealth and is able to disarm weaker antivirus programs and security measures in place as well as reconfigure the system as follows:

  • Edit the registry so that the malicious program and attack repeats each time Windows is booted
  • Hijack the browser and block traffic to helpful malware removal sites and forums and reroute to malicious sites or search engines
  • Open a two-way port to transport stolen data and intercept the download of more malicious programs

Cybercriminals may partake in email address harvesting to nourish their spam campaigns. Email address harvesting collects and sells email addresses compiled in databases. While most scams resulting from spam rely on user help, i.e. click, unfortunately, many PC users do not take the time to fully read agreements or verify the source of emails, links, or attachments. Therefore, take heed and implement safety procedures that protect your vital data and keep hackers out of your computer.

Most Trending Spam in the Last 2 Weeks

# Threat Name Severity Level Alias(es) Detections
1. Quote That Meets Our Requirements Email Scam
2. Payment Schedule Document Email Scam
3. Your Emails Will No Longer Be Delivered Email Scam
4. 'Mailbox Restriction Notice' Email Scam
5. New Webmail 2.0 Email Scam
6. Microsoft And AOL Sweepstakes Email Scam
7. Mailbox Issue Identified Email Scam
8. Mail Cloud Server Email Scam
9. FedEx Delivery Address Confirmation Email Scam
10. Yahoo Canada Lottery Email Scam
11. Updated Service Terms Email Scam
12. US Trade Commission Compensation Scam
13. DHL - A Parcel Collection Has Been Registered Email Scam
14. Claim Inheritance Money Email Scam
15. Capital One - Card Purchase Is Under Review Email Scam
16. 'AppleCare - Official Security Alert' Pop-Up Scam
17. Inject TikTok Scam
18. Your Computer Has Corrupted Files Pop-Up Scam
19. Solvay - New Business Relationships Email Scam
20. Update Your Webmail Account Settings Email Scam
21. Netflix Account Suspended Email Scam
22. Zoho - Review Your Outgoing Emails Scam
23. Login From A New Device Email Scam
24. Spotify Subscription Update Email Scam
25. Your Email Certificate Has Expired Email Scam
26. 'YоuTubе Suppоrt Shared an Item' Scam
27. Capital One - Card Restricted Email Scam
28. Avoid Getting Locked Out Email Scam
29. Capital One - Unrecognized Purchase Email Scam
30. 'Security Risk for Your Email' Scam

Last updated: 2025-04-03

Loading...
Enigmasoftware.com uses cookies to provide you with a better browsing experience and analyze how users navigate and utilize the Site. By using this Site or clicking on "OK", you consent to the use of cookies. Learn more.