-
Recent Entries
Monthly Archives
- October 2021
- September 2021
- August 2021
- March 2021
- February 2021
- December 2020
- November 2020
- October 2020
- September 2020
- August 2020
- April 2020
- February 2020
- December 2019
- April 2019
- February 2019
- January 2019
- October 2018
- July 2018
- June 2018
- April 2018
- February 2018
- December 2017
- July 2017
- May 2017
- February 2017
- January 2017
- November 2016
- October 2016
- September 2016
- August 2016
- July 2016
- June 2016
- April 2016
- March 2016
- February 2016
- December 2015
- October 2015
- September 2015
- August 2015
- July 2015
- June 2015
- December 2014
- November 2014
- September 2014
- August 2014
- July 2014
- May 2014
Category Archives: Informative
Pesky Russian Spam Sources Increasing Again?
As you know, I often point out how bad the North American hosting companies can be as spam sources, but of course with most of the hosting companies being in North America, this would be logical. It used to be … Continue reading
Get your Amazon Gift Card? fightspam.ca
It’s Xmas time, so of course this is the time of year when people try to take advantage, have you ever got one of those surprise Amazon Gift Cards in the email? Well, here is an example of what hit … Continue reading
How easy it is for spammers to get IP(s)
It used to be the spammer’s favourite trick was to use virus’s, trojans etc to take over home computers to send spam, but spammers have found that often it is easier just to order IP Space. Some hosting companies look … Continue reading
Linode Outbreaks, why PTR Important
Today’s report is about Linode, but of course this could be about many different providers, and is a reason why the ability to block emails based on the PTR records is important, and it is best when it can be … Continue reading
Rejecting ‘before’ SMTP processes
It is always surprising how much benefit you can get by blocking at the edge, on very simple rule sets, and how much load can be reduced. Of course it depends on your implementation, sometimes that means blocking at the … Continue reading
Posted in Informative
Tagged magicmail, mailcracker, SMTP, softlayer, spam, spamrats, tcpwrappers, windows
Leave a comment
RIPE Bulgaria, what is going on?
While we all see occasional false information used by spammers to get hosting IP Space, in an age where IPv4 addresses are scarce you always wonder when large swathes of brand new IP space are used for spamming. And in … Continue reading
SoftLayer spam increase
While every hosting company has challenges with preventing spam outbreaks, and some do better than others, we occasionally see a trend that indicates a larger issue. This could be related to a general security issue, or a systemic deficiency. And … Continue reading
Very Large BOT activates
As of about 36 hours ago, another large bot activated in order to send spam and perform dictionary attacks. And as usual, this could have been mitigated if more ISP’s blocked port 25 outbound. This BOT was substantial enough to … Continue reading
Another reason why ENZU should provide proper ‘rwhois’
So who is behind this outbreak. Of course you would expect their own monitoring systems would pick this up, before it started slamming ISP’s with bulk email… 23.245.171.126 : imfw.privatejetsvcs.com 23.245.171.128 : vfilter1.privatejetsvcs.com 23.245.171.145 : delawarekidney.telecomconnecting.com 23.245.171.146 : analab.telecomconnecting.com 23.245.171.147 … Continue reading
New Twist on HELO Bot
Our spam auditors noticed that a variation on a previous bot that simply opened up a HELO and then quit has surfaced, similar to the ylmf-pc bot. All it does it send a HELO greeting, usually from www.randomchars.com, and then … Continue reading