Deprecated: mysql_connect(): The mysql extension is deprecated and will be removed in the future: use mysqli or PDO instead in /home/a26f9f83/public_html/articles/includes/config.php on line 159
How Spammers Fool Rule-based and Signature-Based Spam Filters > NetSparsh - Viral Content you Love & Share

How Spammers Fool Rule-based and Signature-Based Spam Filters

Effectively stopping spam over the long-term requires much more than blocking individual IP addresses and creating rules based on keywords that spammers typically use. The increasing sophistication of spam tools coupled with the increasing number of spammers in the wild has created a hyper-evolution in the variety and volume of spam. The old ways of blocking the bad guys just don't work anymore.

Examining spam and spam-blocking technology can illuminate how this evolution is taking place and what can be done to combat spam and reclaim e-mail as the efficient, effective communication tool it was intended to be.

Heuristics (Rule-based Filtering)

One method used to combat spam is Rule-based, or Heuristic Filtering. Rule-based filters scan email content for predetermined words or phrases that may indicate a message is spam. For example, if an email administrator includes the word "sex" on a company's rule-based list, any email containing this word will be filtered.

The major drawback of this approach is the difficulty in identifying keywords that are consistently indicative of spam. While spammers may frequently use the words "sex" and 'Viagra" in spam emails, these words are also used in legitimate business correspondence, particularly in the healthcare industry. Additionally, spammers have learned to obfuscate suspect words by using spellings such as "S*E*X", or "VI a a GRR A".

It is impossible to develop dictionaries that identify every possible misspelling of "spammy" keywords. Additionally, because filtering for certain keywords produces large numbers of false positives, many organizations have found they cannot afford to rely solely on rule-based filters to identify spam.

Signature-Based Spam Filters

Another method used to combat spam is Signature-based Filtering. Signature-based filters examine the contents of known spam, usually derived from honey pots, or dummy email addresses set up specifically to collect spam. Once a honey pot receives a spam message, the content is examined and given a unique identifier. The unique identifier is obtained by assigning a value to each character in the email. Once all characters have been assigned a value, the values are totaled, creating the spam's signature. The signature is added to a signature database and sent as a regular update to the email service's subscribers. The signature is compared to every email coming in to the network and all matching messages are discarded as spam.

The benefit of signature-based filters is that they rarely produce false-positives, or legitimate email incorrectly identified as spam. The drawback of signature-based filters is that they are very easy to defeat. Because they are backward-looking, they only deal with spam that has already been sent. By the time the honey pot receives a spam message, the system assigns a signature, and the update is sent and installed on the subscribers' network, the spammer has already sent millions of emails. A slight modification of the email message will render the existing signature useless.

Furthermore, spammers can easily evade signature-based filters by using special email software that adds random strings of content to the subject line and body of the email. Because the variable content alters the signature of each email sent by the spammer, signature-based spam filters are unable to match the email to known pieces of spam.

Developers of signature-based spam filters have learned to identify the tell-tale signs of automated random character generation. But as is often the case, spammers remain a step ahead and have developed more sophisticated methods for inserting random content. As a result, most spam continues to fool signature-based filters.

The Solution

When used individually, each anti-spam technique has been systematically overcome by spammers. Grandiose plans to rid the world of spam, such as charging a penny for each e-mail received or forcing servers to solve mathematical problems before delivering e-mail, have been proposed with few results. These schemes are not realistic and would require a large percentage of the population to adopt the same anti-spam method in order to be effective. You can learn more about the fight against spam by visiting our website at www.ciphertrust.com and downloading our whitepapers.

Dr. Paul Judge is a noted scholar and entrepreneur. He is Chief Technology Officer at CipherTrust, the industry's largest provider of enterprise email security. The company's flagship product, IronMail provides a best of breed enterprise anti spam solution designed to stop spam, phishing attacks and other email-based threats. Learn more by visiting http://www.ciphertrust.com/prod ucts/spam_and_fraud_protection today.

In The News:

This RSS feed URL is deprecated, please update. New URLs can be found in the footers at https://news.google.com/news

iMore (press release) (blog)

Just-released iOS 12 beta fixes update pop-up spam
iMore (press release) (blog)
To prevent it, you can install and enable a Content Blocker. It could break some sites by accident, or help cause some sites you love to go out of business, but you can whitelist and pause blocking whenever and on whichever sites you like, and keeping ...
Guilherme Rambo on Twitter: "It looks like this method in Springboard does some date/time calculations to determine ...Twitter

all 78 news articles »

Magento Blocker - Block Bot/User by IP, Country or User Agent Extension by Knowband
WhaTech (blog)
The store admin allows the store merchant to block the user/bot by IP, country, or user-agent depending upon their site requirements with Magento spam IP blocker extension by Knowband. 4. Magento Block Bot module supports is multi-lingual compatibility.


The Verge

How to stop annoying robocalls on your iPhone or Android phone
The Verge
AT&T has a free app, Call Protect, that's designed to block some fraudulent robocalls from reaching you, and you won't have to do anything besides install the software on your phone. It won't completely block spam or telemarketer calls, however ...


Wall Street Journal

4 Smartphone Apps That Aggressively Block Spam Calls
Wall Street Journal
To block nuisance calls more effectively, turn to apps, which use vast databases of bogus phone numbers and “spam protection engines” to better call out frauds. They briskly divert most—if not all—of those spammers to voice mail. One app also fights ...


The Verge

Google Phone App For Android Now Able To Block Spam Calls: Here's How To Activate The Feature
Tech Times
Google, however, has taken spam protection a step further with a new feature for its Phone app for Android smartphones. Instead of requiring users to dismiss suspected spam calls on their own, the Google Phone app is now able to automatically block them.
Google's Phone app can now prevent some spam calls from interrupting youThe Verge
How to enable spam call filtering on your Android phoneTechRepublic
How to block specific area and country codes on Android and iOSMobileSyrup
GoAndroid (press release) (blog) -Thurrott.com (blog) -Google Play -Google
all 103 news articles »

USA TODAY

Don't pick up: how to stop these annoying robocalls for good
USA TODAY
Google's spam blocker doesn't have a particular name, but it's even more powerful. On Google's Pixel phones, the default Google Phone app lights up your screen with a bright red warning telling you not to answer the spam calls. It's already a great ...

and more »

Slate Magazine

How Android Is Fighting Spam Calls
Slate Magazine
Your other alternative is to use a service like T-Mobile's Scam ID and Scam Block (free) or Verizon's Caller Name ID ($2.99/month) to help filter and identify robocalls on your carrier's end. Some phone-makers, such as Samsung, also offer built-in ...


Small Business Trends

10 Best Call Blocker Apps to Prevent Nuisance Calls to Your Small Business
Small Business Trends
What's different about this call blocker app is that as well as identifying unknown phone calls and warning you of annoying spam calls, its adds a caller picture to your contacts from Twitter, Facebook and Google+, meaning you can identify calls made ...


Fossbytes

8 Best Android Call Blocker App List For 2018 | Filter Spam Calls
Fossbytes
Call Blacklist is a powerful Android call blocker app that works both as a spam call blocker and SMS blocker. You can block calls and messages from any specific, private or hidden numbers, or any other number that you have not stored in your contacts.


What's up with the new spam blocker?
Swarthmore Phoenix
The college used to use the open-source SpamAssassin filter to keep viruses and spam at bay, but Fran Gelfland, Unix Systems Administrator for Swarthmore College, explained that a group of ITS staff from TriCo “chose to jointly purchase the McAfee SMS ...

Google News

The Fastest Delete Finger in the Midwest!

There are hundreds of thousands of people who are trying... Read More

How To Stop Spam

I imagine you have seen, heard about, or already know... Read More

Three Faces of SPAM

Like everybody who will ever read this, I get spam... Read More

Pst... Pass It On... I Found Out Its a Hoax

When you receive an email telling you about a virus,... Read More

Do You Know Whats in Your Trash?

A hearty welcome to all the spam fighting filters and... Read More

Invasion of the Email Snatchers

They're sneaky. And stealthy. They're quiet and mostly unobtrusive, but... Read More

Wiki Reek-y Havoc

The Vandals are coming! And this time they're after your... Read More

SPAM: A Nutrious Food or a Waste of Time?

Unless the filters on your computer are really good, you're... Read More

The Trouble With Spam Is....

Each day we all face the same challenge. Spam. It... Read More

CAN-SPAM Basics

I. BACKGROUNDThe CAN-SPAM Act of 2003 (Controlling the Assault of... Read More

Spam - How to Report it

I'm sure you find spam just as frustrating and annoying... Read More

Having a Bad e MALE Day? Email, Spam, Spam and More Spam

You just sat at your desk, opened your email account... Read More

What to Do to Avoid Getting Banned

How would you feel if you found a link on... Read More

The Vanishing Mail

Am I Just Being Paranoid Or Are The Robots Out... Read More

Block Ads, Defeat Pop-Ups, and STOP Page Hijacking

You're not alone!Who hasn't surfed the web looking for information... Read More

Bayesian Spam Filters Explained

In a word Bayesian spam filters are "intelligent". Bayesian spam... Read More

FTC Botches Fight on SPAM, Microsoft Takes Over the Battle

While the Federal Trade Commission is busy fighting over definitions... Read More

Is Email Dying?

2004 was really a year when the whole subject of... Read More

Internet Tip of the Week: Cease and Desist

While we all admit that unsolicited commercial email is a... Read More

20 Words That Kill - At Least When It Comes to Spam Filters

Spam, spam, spam. It's terrible not only for those of... Read More

The Anti Spam Challenge ? Minimizing False Positives

Email is the quintessential business communication tool, so when it... Read More

How to Protect Your Email ID from Spammers?

You must be one of them experiencing a lot of... Read More

Sick Of Wading Through Spam?

It's a nightmare isn't it? You fire up your email... Read More

Spam Filters Explained

What do they do? How do they work? Which one... Read More

All About Spam

Spam is annoying. Period. Why people would want to send... Read More