Deprecated: mysql_connect(): The mysql extension is deprecated and will be removed in the future: use mysqli or PDO instead in /home/a26f9f83/public_html/articles/includes/config.php on line 159
How Spammers Fool Rule-based and Signature-Based Spam Filters > NetSparsh - Viral Content you Love & Share

How Spammers Fool Rule-based and Signature-Based Spam Filters

Effectively stopping spam over the long-term requires much more than blocking individual IP addresses and creating rules based on keywords that spammers typically use. The increasing sophistication of spam tools coupled with the increasing number of spammers in the wild has created a hyper-evolution in the variety and volume of spam. The old ways of blocking the bad guys just don't work anymore.

Examining spam and spam-blocking technology can illuminate how this evolution is taking place and what can be done to combat spam and reclaim e-mail as the efficient, effective communication tool it was intended to be.

Heuristics (Rule-based Filtering)

One method used to combat spam is Rule-based, or Heuristic Filtering. Rule-based filters scan email content for predetermined words or phrases that may indicate a message is spam. For example, if an email administrator includes the word "sex" on a company's rule-based list, any email containing this word will be filtered.

The major drawback of this approach is the difficulty in identifying keywords that are consistently indicative of spam. While spammers may frequently use the words "sex" and 'Viagra" in spam emails, these words are also used in legitimate business correspondence, particularly in the healthcare industry. Additionally, spammers have learned to obfuscate suspect words by using spellings such as "S*E*X", or "VI a a GRR A".

It is impossible to develop dictionaries that identify every possible misspelling of "spammy" keywords. Additionally, because filtering for certain keywords produces large numbers of false positives, many organizations have found they cannot afford to rely solely on rule-based filters to identify spam.

Signature-Based Spam Filters

Another method used to combat spam is Signature-based Filtering. Signature-based filters examine the contents of known spam, usually derived from honey pots, or dummy email addresses set up specifically to collect spam. Once a honey pot receives a spam message, the content is examined and given a unique identifier. The unique identifier is obtained by assigning a value to each character in the email. Once all characters have been assigned a value, the values are totaled, creating the spam's signature. The signature is added to a signature database and sent as a regular update to the email service's subscribers. The signature is compared to every email coming in to the network and all matching messages are discarded as spam.

The benefit of signature-based filters is that they rarely produce false-positives, or legitimate email incorrectly identified as spam. The drawback of signature-based filters is that they are very easy to defeat. Because they are backward-looking, they only deal with spam that has already been sent. By the time the honey pot receives a spam message, the system assigns a signature, and the update is sent and installed on the subscribers' network, the spammer has already sent millions of emails. A slight modification of the email message will render the existing signature useless.

Furthermore, spammers can easily evade signature-based filters by using special email software that adds random strings of content to the subject line and body of the email. Because the variable content alters the signature of each email sent by the spammer, signature-based spam filters are unable to match the email to known pieces of spam.

Developers of signature-based spam filters have learned to identify the tell-tale signs of automated random character generation. But as is often the case, spammers remain a step ahead and have developed more sophisticated methods for inserting random content. As a result, most spam continues to fool signature-based filters.

The Solution

When used individually, each anti-spam technique has been systematically overcome by spammers. Grandiose plans to rid the world of spam, such as charging a penny for each e-mail received or forcing servers to solve mathematical problems before delivering e-mail, have been proposed with few results. These schemes are not realistic and would require a large percentage of the population to adopt the same anti-spam method in order to be effective. You can learn more about the fight against spam by visiting our website at www.ciphertrust.com and downloading our whitepapers.

Dr. Paul Judge is a noted scholar and entrepreneur. He is Chief Technology Officer at CipherTrust, the industry's largest provider of enterprise email security. The company's flagship product, IronMail provides a best of breed enterprise anti spam solution designed to stop spam, phishing attacks and other email-based threats. Learn more by visiting http://www.ciphertrust.com/prod ucts/spam_and_fraud_protection today.

In The News:

This RSS feed URL is deprecated, please update. New URLs can be found in the footers at https://news.google.com/news

Tech Times

Google Phone App For Android Now Able To Block Spam Calls: Here's How To Activate The Feature
Tech Times
The stock Google Phone app for Android smartphones was upgraded to block spam calls and send them directly to voicemail, without the user receiving any notification. The new feature, which will work on devices running Android 6.0 Marshmallow and ...
Google Phone App will now act as a Blocker for Spam CallsGoAndroid (press release) (blog)
Phone - Apps on Google PlayGoogle Play
Use caller ID & spam protection - Phone app Help - Google SupportGoogle Support

all 69 news articles »

Fox Business

Phone scammer calling? How to protect yourself when thieves call
Fox Business
The registry accepts registrations from both landlines and cell phones. He says if you are receiving unwanted calls on your cell phone, you can try downloading a spam blocker or a caller ID app. Another option is to block the number on your iPhone or ...


Security Boulevard

NG Firewall Replaces WatchGuard in Partner's Network Security Portfolio
Security Boulevard
”Virus Blocker, Spam Blocker, Web Filter, and Application Control are just some of the apps that protect and filter network traffic, stopping malware, hacking and phishing attempts before they reach users.” The Directory Connector application helps ...


WABE 90.1 FM

Atlanta Got Millions Of Robocalls In June. Here's 5 Ways To Block Them
WABE 90.1 FM
A few free apps Android users can download include Call Blocker Free- Blacklist, CallApp-Caller ID & Block and Hiya Caller ID and Block. PrivacyStar, RoboKiller- Stop Spam Calls and Mr. Number: Spam Protection & Number Search are free and available ...

and more »

The Ledger

Tech Q&A: Here's how to minimize spam e-mail (hint: don't unsubscribe)
The Ledger
To prevent getting unwanted pop-ups, use a “pop-up blocker” with your browser. (To find pop-up blocker add-ons for several popular browsers, see tinyurl.com/y7tf4g48). To get rid of any pop-up software that's already on your computer, download and run ...


Total Telecom (press release)

BT fined £77000 over spam emails
Total Telecom (press release)
... to the highest standards of data management," the statement continued. We are having trouble showing you adverts on this page, which may be a result of ad blocker software being installed on your device. To view the article please disable any ad ...


The Verge

How to stop annoying robocalls on your iPhone or Android phone
The Verge
AT&T has a free app, Call Protect, that's designed to block some fraudulent robocalls from reaching you, and you won't have to do anything besides install the software on your phone. It won't completely block spam or telemarketer calls, however ...


CSO Australia

Your Go-to Guide to Anonymous Emails
CSO Australia
Modern society has used the email everyday ever since Ray Tomlinson invented it in 1972. Since then, it has gotten a steady foothold in our daily lives and will continue to do so as we progress. Statista numbered the emails sent and received per day ...


Fossbytes

8 Best Android Call Blocker App List For 2018 | Filter Spam Calls
Fossbytes
Mr. Number is a famous call blocker app for Android that is free with no ads. It permits you to block unwanted calls as well as identify and stop spam calls and messages. You can select numbers from your contact list or enter them manually. It even ...


Popular Science

Five tips for blocking spam from your inbox
Popular Science
In Outlook, you mark a message as spam by right-clicking it in your inbox and choosing Junk, then Block Sender, from the menu that pops up. When you're browsing the Junk Email folder, restore a flagged message to your inbox by right-clicking it and ...

Google News

20 Words That Kill - At Least When It Comes to Spam Filters

Spam, spam, spam. It's terrible not only for those of... Read More

How To Stop Unwanted Email Spam

You can stop unwanted email spam, you can choose to... Read More

Do Not Spam

The temptation among internet marketers to SPAM is greater than... Read More

Spam The Spammer - Will It Work?

Spam is everywhere. It's the "in-box lunch meat" nobody likes,... Read More

Why Your ISP Takes Bribes From Spammers

The lifeblood of the spammer is email. They need to... Read More

Im Guilty Until Proven Innocent

No doubt about it."Spam" (unsolicited commercial email) threatens to paralyze... Read More

Eight Quick Tips For Stopping SPAM

If you are buried in SPAM then you're not alone.... Read More

What To Do When You Get Spam

When you go to your mailbox and find pieces of... Read More

BUSTED: Anti Spam Forces Bankrupt Super-Spammer Scott Richter

Microsoft scores one for the good guysScott Richter, the self-proclaimed... Read More

Where Did The Word Spam Come From?

We've all become familiar with the term spam. It's become... Read More

Avoid, Shun, Thwart, Prevent, and then Filter Spam

Email is rapidly becoming the standard means of communication among... Read More

Spam with Typos: Why Do They All Have Spelling Errors?

A friend asked me: I don't get it. Why do... Read More

Managing Spam in 2005

In 1998, nearly 10% of all email traffic on the... Read More

Which Spam Filter Is Best For You?

With the number of spam filtering solutions increasing each week... Read More

Take Back Control of Your Inbox: Eliminate Annoying and Potentially Harmful E-mails

Are you tired of spam stealing your time, your money,... Read More

Beware of the Newest Activity Online: Phishing

No. I'm not talking here about the outdoor activity enjoyed... Read More

Invasion of the Email Snatchers

They're sneaky. And stealthy. They're quiet and mostly unobtrusive, but... Read More

The Business Of Sending Spam

You all tear your hair out in frustration every time... Read More

How You Can Avoid The New Dangers Of Spam

Until recently, spam has been an annoyance, a definite load... Read More

Edating Readers

One of our Australian clients sent out a campaign using... Read More

Kill The Messenger (Service)

You are familiar with the software applications that you run... Read More

Email Spam and Phishing

It seems like the volume of email spam has doubled... Read More

How Spammers Fool Whitelists - And How to Stop Them

Effectively stopping spam over the long-term requires much more than... Read More

Block Ads, Defeat Pop-Ups, and STOP Page Hijacking

You're not alone!Who hasn't surfed the web looking for information... Read More

What SPAM Means: Stupid People Annoying Me

English, German, Italian - It's All SPAM To MeHas anyone... Read More