Nicks
Posts: 2772
Joined: 17.Mar.2003
Status: offline
|
We're seeing quite a rapid evolution of spamming techniques lately.
We've seen pdf spam containing text, pdf spam containing images, excel files containing text, and zip files containing excel files among others. The underlying trend is the use of container formats so as to obfuscate the underlying text or image spam from anti-spam filters. We expect to see the continued introduction of new container file formats as the spammers continue to develop the use of this technique. The viability of this technique to spammers is based upon the container file format being supported by the end user system and the likelihood of the end user clicking through the layers of containers.
We are currently working on a new build of GFI MailEssentials 12 in which the current PDF spam check will be evolved so as to target these new trends in spam focusing on the presence of a small attachment in combination with limited or no body text and/or subject line. The tentative release date for this update is mid-August.
We are also looking at means of applying other more generic capabilities against this type of spamming technique. At this moment in time, Bayesian works successfully against top level text and image spam. We have some interesting lines of research about how to include attachments in our Bayesian analysis; however it will take us a couple of weeks to determine its ultimate effectiveness in a production environment.
_____________________________
Nicholas Sciberras
GFI Software
Blog-Twitter-YouTube-Facebook
|
Printable Version
PDF Spam updates - 
New Messages
No New Messages
Hot Topic w/ New Messages
Hot Topic w/o New Messages
Locked w/ New Messages
Locked w/o New Messages
Post New Thread