Members
  • Total Members: 14176
  • Latest: toxxxa
Stats
  • Total Posts: 42869
  • Total Topics: 16078
  • Online Today: 3110
  • Online Ever: 51419
  • (01. January 2010., 10:27:49)









Author Topic: Google update Postini Anti-Spam Engine to prevent new JavaScript attacks  (Read 3760 times)

0 Members and 2 Guests are viewing this topic.

Samker

  • SCF Administrator
  • *****
  • Posts: 7528
  • KARMA: 322
  • Gender: Male
  • Whatever doesn't kill us makes us stronger.
    • SCforum.info - Samker's Computer Forum


Google’s e-mail security team has updated the Postini  engine to stop a new type of JavaScript attack that helped fuel a rise in spam volume in recent months.

Google says it has seen a surge in obfuscated JavaScript attacks, describing them as a hybrid between virus and spam messages. The e-mails are designed to look like legitimate messages, specifically Non Delivery Report messages, but contain hidden JavaScript.

“In some cases, the message may have forwarded the user’s browser to a pharma site or tried to download something unexpected,” Google said in its official blog. “Since the messages contained classic JavaScript which generates code, the messages could change themselves and take multiple forms, making them challenging to identify”: http://googleenterprise.blogspot.com/2010/07/q210-spam-virus-trends-from-postini.html

“Fortunately, our spam traps were receiving these messages early, providing our engineers with advanced warning, which allowed us to write manual filters and escalate to our anti-virus partners quickly,” Google continued. “In addition to this, we updated our Postini Anti-Spam Engine (PASE) to recognize the obfuscated JavaScript and capture the messages based on the underlying code to ensure accuracy.”

Spam volume increased 16 percent between the first and second quarter of 2010, according to Google, which tracks 3 billion e-mail messages per day with its Postini e-mail security and archiving services. But spam levels have declined year-over-year, dropping 15 percent between Q2 2009 and Q2 2010.

There’s a much different story on the virus front. Virus traffic in Q2 2010 was more than two and a half times greater than it was in the second quarter of last year, but has remained steady since the first quarter of 2010, increasing only 3 percent.

“Spam and virus volumes this year have continued their upward trend,” Google says. “These trends tell us that the spammers are still extremely active, and their botnets produce high levels of spam and virus traffic.”In addition to the obfuscated JavaScript attacks, Google says spammers are relying on “the classics,” such as false social networking messages, e-mails related to current events, and shipping scams.

There’s also been a rise in “friend-in-need” phishing attempts, in which a hacker breaks into someone’s e-mail account and hand types a message to the victim’s contacts asking for money. Google has released “several updated filters” to combat these new waves of spam.

“Spammers continue to exploit techniques that have proven results, but as we have seen with obfuscated JavaScript attacks spammers are always experimenting with new techniques to stay ahead of security measures,” Google says.

(MW)

Samker's Computer Forum - SCforum.info


 

With Quick-Reply you can write a post when viewing a topic without loading a new page. You can still use bulletin board code and smileys as you would in a normal post.

Name: Email:
Verification:
Type the letters shown in the picture
Listen to the letters / Request another image
Type the letters shown in the picture:
Second Anti-Bot trap, type or simply copy-paste below (only the red letters):www.scforum.info:

Enter your email address to receive daily email with 'SCforum.info - Samker's Computer Forum' newest content:

Terms of Use | Privacy Policy | Advertising