Messaging spam
From Wikipedia, the free encyclopedia
| This article may require cleanup to meet Wikipedia's quality standards. Please improve this article if you can. (April 2006) |
Messaging spam, sometimes called SPIM, is a type of spam targeting users of instant messaging services.
The increase in messaging spam may be motivated by the rise in popularity of instant messenger services, as well as the many steps to crack down on spamming since the late 1990s.
Contents |
[edit] Instant messaging applications
Instant messaging (IM) systems, such as Yahoo! Messenger, AIM, MSN Messenger, Tencent QQ, and ICQ, are popular targets for spammers. Many IM systems offer a directory of users, including demographic information such as age and sex. Advertisers can gather this information, sign on to the system, and send unsolicited messages, which could include repetions of words or phrases repeatedly to annoy or get the attention of the victim. Microsoft has announced that the upcoming Windows Live Messenger 9.0 would support specialized features to combat messaging spam. [1]
[edit] Countermeasures
- Many users choose to receive IMs only from people already on their contact list.
- The free AOL Instant Messenger (AIM) service allows users to 'warn' other users. The warning decreases the number of messages an account can send, slowing down spam, and shows the AIM address as warned to other users that it may try to message. This feature does have the potential for abuse, although such cases are minimal.
- In corporate settings, spam over IM is blocked by IM security products like those from Akonix, ScanSafe, Symantec, and CSC. Spam blocking is one of the functions performed by these specialized products, along with virus scanning, filtering for inappropriate use or harassing language, and archiving for compliance to policies and regulations.
[edit] Messenger service spam
In 2002, a number of spammers began using the Messenger service in Microsoft's Windows NT-based operating systems to get their message across. This isn't the same as the Windows Messenger instant messenger application included with Windows XP; rather, it is a function of Windows designed to allow servers to send alerts to administrator workstations. Windows Messaging spam appears as normal dialog boxes containing the spammer's message.
Messenger spammers frequently send messages to vulnerable Windows machines consisting of text like: "Annoyed by these messages? Visit this site." The link leads to a Web site where, for a fee, users are told how to disable the Messenger service. Though the messenger service is easily disabled for free by the user, this scam works because it creates a perceived need and then offers an immediate solution.
[edit] Countermeasures
Any one of these countermeasures will block Messenger service spam.
- If using XP, upgrade to the latest service pack.
- For other vulnerable operating systems, upgrade to a later operating system, Windows-based or alternative.
- Block it with a firewall by blocking packets to the NetBIOS ports 135-139 and 445 as well as unsolicited UDP packets to ports above 1024[2].
- Stop the Messenger service.
[edit] References
- ^ Jeremy Kirk. Microsoft to clamp down on spam over IM. IDG News. Retrieved on 2007-11-24.
- ^ Messenger Service window that contains an Internet advertisement appears. Microsoft. Retrieved on 2007-12-01.
Spamming | |
|---|---|
| General | History of spamming · Network Abuse Clearinghouse |
| E-mail spam | Address munging · Bulk email software · Dictionary spamming · Directory Harvest Attack · DNSBL · Spambot · Pink contract |
| Spam over other protocols | Autodialer · Flyposting · Messaging spam · Mobile phone spam · Newsgroup spam · Telemarketing · VoIP spam |
| Anti-spam techniques | Disposable e-mail address · E-mail authentication · SORBS · SpamCop · Spamhaus · List poisoning · Bayesian spam filtering |
| Spamdexing | Keyword stuffing · Google bomb · Scraper site · Link farm · Webring · Cloaking · Doorway page · URL redirection · Spam blogs · Sping · Forum spam · Blog spam · Referer spam |
| Internet fraud | Advance fee fraud · Lottery scam · Make Money Fast · Microcap stock fraud · Phishing · Vishing |
nl:SPIM pl:Spim sv:Spim
