<img height="1" width="1" src="https://www.facebook.com/tr?id=1046809342117480&amp;ev=PageView &amp;noscript=1">

VSEC Blog: IT Security Channel News brought to you by Infinigate UK

Share the Infinigate UK Blog on LinkedIn Share the Infinigate UK Blog on Twitter Share the Infinigate UK Blog on Facebook Share the Infinigate UK Blog on Google+ Share the Infinigate UK Blog via Email

Was your Email Address found in the World's Largest Spambot?

Posted: 13 September 2017

Your Email Address Worlds Largest Spambot Email Security

The average IT security administrator has much to be concerned about today; the threat of ransomware bringing their businesses to a halt, their readiness for the incoming GDPR (General Data Protection Regulation), trusted employees forever on the cusp of potential betrayal and now the return of the oldest foe of them all... spam.

Spam returns to the world of IT security

Last month, spam made it back into the headlines after a Paris-based researcher discovered thousands of email address lists belonging to a spambot, known as "Onliner", on an open web server in the Netherlands. Containing a record-breaking 711 million addresses, the lists have helped Onliner to deliver the "Ursnif" banking malware to inboxes worldwide, infecting over 100,000 unique endpoints to date.

To put this into context, the lists represent just short of 17% of the world's 4.3 billion registered email addresses.

In addition to email addresses, the lists contained corresponding SMTP (Simple Mail Transport Protocol) server addresses, port numbers and passwords associated with the account, potentially upgrading this from a simple spam list, to the world's largest data breach.

Onliner is suspected to have used this information in an attempt to connect and authenticate with SMTP servers, bypassing spam controls which stand down when presented with an authenticated account. Those successful would then have a fingerprinting email sent to the target containing an image with embedded code, similar to the way tracking emails work. The code would then report information about the endpoint being used, back to Onliner, (e.g the operating system), allowing more targeted spam and malware to be subsequently delivered.

Are you on the Spam List?

The website Have I Been Pwned has added and indexed the Onliner hoard to its database of 231 breached website account lists which can be searched across using our search application just below.

Enter your email address and we'll return a list of spam lists and breaches which your account was recognised as being involved in.

Get free 30 day trial GFI MailEssentials

Chris Payne on behalf of Infinigate UK
Posted by: Chris Payne
on behalf of Infinigate UK


Share via:


Subscribe to VSEC Blog Updates

Terms and Conditions:
  • When completing this form, you are indicating your consent for this processing activity. By doing this you are providing Infinigate UK with lawful consent to process your submitted personal data for one or both of the marketing purposes below:
    • We will use your details to send you blog updates.
    • We will match your answers to areas of interest which believe you have and may send you additional marketing materials related to those areas.
  • We will keep your personal data for nine months, upon which we will delete your personal data unless you have consented to further processing or we have legitimate interests to retain it. You are free to withdraw your consent at any time by contacting our marketing department or using one of our unsubscribe links in our communications.
  • In some cases where you indicate consent for supplying you with additional promotional marketing material, we will share your personal data with one of our reseller partners, should your areas of interest match a solution or service they provide. We instruct all our reseller partners to communicate this data transfer with data subject affected.
  • Your personal data is stored in a marketing automation solution database, access to this is limited to authorised users and all necessary steps to ensure data security is maintained.

For further information about this form, your rights under the General Data Protection Regulation or how to exercise them, please contact Infinigate's marketing department here.

Popular Posts