Terry Zink: Security Talk

Discussing Internet security in (mostly) plain English

  • Terry Zink: Security Talk

    The origins of hacker attacks

    • 1 Comments
    Here's an article from the March 31, 2008 issue of Investors Business Daily: About half of all hacker attacks originate from the .edu domain used by colleges, according to data recently compiled by network security experts at Microsoft.  The software...
  • Terry Zink: Security Talk

    Spoof-and-compromise spam technique

    • 3 Comments
    An antispam technique that has caused some pain in recent days for some customers is that of compromising a user's email account and then using it to send out spam.  This is an example of what I have earlier referred to as diplomatic immunity - hiding...
  • Terry Zink: Security Talk

    Spammers have broken my Email form

    • 2 Comments
    If you want to contact me through this blog, you can click the Email link at the top of the page, fill out a form and send it to me.  This prevents my personal email alias from being exposed and spammers harvesting it.  In theory it should prevent...
  • Terry Zink: Security Talk

    The concept of Safe Senders

    • 2 Comments
    Sometimes an end user wants to flag a specific sender as a safe sender, that is, they always want messages from that user to go to their inbox.  You've probably seen this in some newsletters where they say at the top or bottom of the message to please...
  • Terry Zink: Security Talk

    The dip

    • 1 Comments
    I finished reading Michael Crichton's book Prey the other day.  I blogged about this a week and a half ago.  Basically, a cloud of molecular particles was learning to interact with its environment. Near the end of the book, the main character...
  • Terry Zink: Security Talk

    Email storage and legal requirements

    • 4 Comments
    One of the trends (might I say minimal requirements) in the hosted email filtering space today is that of email storage and archiving.  Exchange Hosted Services does it, and a number of our competitors do as well. Government regulations often spring...
  • Terry Zink: Security Talk

    Spammer pleads guilty to charges

    • 0 Comments
    I blogged a couple of weeks ago that accused spammer Robert Soloway's trial was beginning but that I didn't think it was likely that much would come of it.  Well, I think I have been proven wrong.  According to IDG , Soloway plead guilty and...
  • Terry Zink: Security Talk

    Spammers aren't always creative

    • 1 Comments
    I first started actively fighting spam in 2004. In the beginning we were dealing exclusively with English language spam but only a couple of months later we expanded our tool set to include support for foreign languages. Foreign language spam differs...
  • Terry Zink: Security Talk

    Some updates on traffic statistics

    • 1 Comments
    An interesting pattern has occurred over the year-to-date. We saw an up-tick in spam in the month of December that was outside the rise in the number of customers that we acquired.  However, in January, we saw a week-over-week decline for four consecutive...
  • Terry Zink: Security Talk

    Consumer vs Enterprise

    • 0 Comments
    Recently, at a Sharepoint conference in early March, Microsoft co-founder and chairman made the following comments regarding Google: “In terms of Google, not to overstate it, but they really don’t understand the special needs of business....
  • Terry Zink: Security Talk

    Nanobots and fighting spam

    • 6 Comments
    One of my favorite fiction writers is Michael Crichton.  His books often center around technology and how when humans try to control or influence the physical environment, things go awry.  In Jurassic Park, humans recreated dinosaurs and attempted...
  • Terry Zink: Security Talk

    The resurrection of zip attachment spam

    • 2 Comments
    Beginning March 4, I started seeing a "new" type of spam in my inbox: spam with zip attachment that contain sexually suggestive subject lines.  The body contents of the messages are very short, only a single sentence and without punctuation...
  • Terry Zink: Security Talk

    Spammers and environmentalists?

    • 1 Comments
    This is a rather strange story that has come to my attention. I live near Seattle and the other day I was reading a story about a suspected domestic terror organization that set fire to several multimillion dollar homes in Woodinville, a Seattle suburb...
  • Terry Zink: Security Talk

    To outsource or not to outsource

    • 0 Comments
    This is a point I have touched on a number of times in the past.  One of the selling points that I point out about outsourcing your spam management to someone else as opposed to doing it in-house is that when it comes to spam, you really do want...
  • Terry Zink: Security Talk

    There are more types of spam than just email spam

    • 4 Comments
    Over the past weekend, I got a mysterious phone call left on my work number.  It went like this: "Hi, my name is Guy Incognito with XGG .  When you have time, please give me a call back at 123-456-7890."  I have changed the name...
  • Terry Zink: Security Talk

    EU fines Microsoft record $1.3 billion

    • 7 Comments
    Originally from Yahoo Finance : BRUSSELS, Belgium - The European Union fined Microsoft Corp. a record $1.3 billion Wednesday for the amount it charges rivals for software information. EU regulators said the company charged "unreasonable prices"...
  • Terry Zink: Security Talk

    Accused spammer's trial to start next month

    • 1 Comments
    Alleged spammer Robert Soloway's trial will start next month in Seattle. From Computerworld : Soloway was arrested in May and charged with sending out tens of millions of unsolicited messages; so many, in fact, that investigators called him the "Spam...
  • Terry Zink: Security Talk

    More on CAPTCHA's (Google's in particular)

    • 5 Comments
    Websense is reporting in a blog article that Google's CAPTCHA has been broken with a one in five success rate.  More interestingly, they have a lot of technical details about how the botnet members coordinate with two different computers during the...
  • Terry Zink: Security Talk

    CAPTCHA's are broken - so now what?

    • 3 Comments
    A few weeks ago I blogged that it sure looked like spammers had broken the CAPTCHA for Windows Live (Hotmail), Yahoo and Gmail.  The evidence was circumstantial in that I was seeing a lot more spam from these services. Over the past couple of weeks...
  • Terry Zink: Security Talk

    More on PII and IP addresses

    • 1 Comments
    In a follow up to the blog post from Google arguing against IP addresses being Personally Identifiable Information, I have a couple of more comments. A couple of months ago we ran into the exact same issue.  While Whitten does make valid points that...
  • Terry Zink: Security Talk

    IP addresses and PII

    • 3 Comments
    I don't normally cheer for Google when I don't have shares in the company, but this time I will make an exception. Alma Whitten, Software Engineer at Google, today posted to their Public Policy Blog that IP addresses shouldn't be considered Personally...
  • Terry Zink: Security Talk

    How to use the Relative Performance Index

    • 2 Comments
    In my previous post , I described an indicator I just invented called the Relative Performance Index.  In this post, I'd like to describe how to interpret it. The RPI makes it possible to do an apples-to-apples comparison.   Our spam filter...
  • Terry Zink: Security Talk

    The Relative Performance Index

    • 5 Comments
    I’m so good sometimes I amaze even myself. I like to play around with metrics and measurements. For the longest time, this was difficult to do because I was unsure of how to determine our non-spam. Well, a couple of months ago I devised a system...
  • Terry Zink: Security Talk

    Facebook: I need to be more careful

    • 1 Comments
    The other day on Facebook, I kind of accidentally spammed my friends.  Here's what I mean: I got one of those Quiz invitations from one of my friends asking me to answer one of their questions, how well do I know them?  It may have been "What...
  • Terry Zink: Security Talk

    Was a CAPTCHA broken?

    • 7 Comments
    A couple of weeks ago, I blogged that some outfit in Russia claimed to have broken Yahoo's CAPTCHA for creation of new email accounts.  Someone posted a reply in the comments with a link to an article that this was unlikely.  Yet, in the past...
Page 36 of 47 (1,164 items) «3435363738»