Typically, a phishing attack will be executed in combination with a massive spam mailing. Phishing spam is sent out to millions of recipients, often with a subject line that is exciting or upsetting. It is calculated to trigger an immediate reaction from the recipient, and get them to respond without further thought.

The phishing email will often have phrases such as:

-Dear Valued Customer.
-Click the link below to access to your account.
-If you don’t respond within 24 hours, your account shall be closed.

The phishing spam is typically a fraudulent but very official-looking e-mail. It is cleverly designed to replicate the website and email messages of a business you know and trust such as your bank or mortgage company. The email will even sport official logos and graphics of the legitimate company.

It will instruct you to click on a link in the email to go to the company’s website, where you can “update” your personal information. The link will usually be “masked,” which means that when you click on it, it will take you to a phony web address. Clicking on the link will take you to a website that appears to be that of the real financial institution’s website. It is, however, just a copycat spoof, set up to give the spammer access to your personal and financial data. You may give your information thinking you are at the real website. Instead, any information you enter here will go directly to the identity thieves.

What are the Consequences?

If you fall prey to the scam and unwittingly divulge private information, you will be left vulnerable to identity theft, credit card fraud and other financial mishaps.

These identity thieves will either sell the information to fellow criminals, or use it for their own financial gain. This vital personal data will be used, for example, to set up fraudulent online bill pay, with payments made out to the  phisher. They may use it to access funds from your bank accounts and credit cards and transfer them to their own checking accounts. They may even use a copy of your bank or credit card along with the phished PIN to withdraw cash from your accounts at any ATM.

Phishing is a numbers game for these criminal spammers. They will send out their phishing email to millions of recipients. They count on just a few falling for the scam and volunteering their information: if a mere 1% of recipients volunteer their personal information, the phishing expedition will be a hughly lucrative. It is these few who make their scam worthwhile.

Incoming search terms:

• dumps pin 101

What is an anti-spam filter?

An anti-spam filter is a program designed to detect and block unsolicited bulk email. It works by scanning any incoming email for words, phrases, html code and other spammer tactics to determine whether an email is spam or not. It does this based on probability formulas that calculate the likelihood that an email that has certain words is spam.

It will also create black lists and white lists. The blacklist will store email from unknown ISP and email addresses or ISP addresses; the whitelist will hold email that is sent from pre-approved sources. The filter software will also keep these lists up to date. Whenever the filter detects that an incoming email is spam, its address is added to the blacklist. Whenever the sender or recipient confirms an email as trusted and legitimate, it will be added to the white list.  Most of the “sporm” (spam pornography) will be filtered out as well as any email that it detects has adult content.

What Should You Look for in Anti-spam Filter Software?

Here are other important features you should take into consideration:

- Make sure the anti-spam filter software is compatible with your particular email service. Do not take it for granted that it will work with what you have.

- It is important that the software program is easy for you to use and navigate. Anti-spam software is worthless if you can’t figure out how to use it or if it has features you do not understand.

- The features and tools the software offers should enable you to customize the program to suit your own needs. It should be flexible in letting you set your own rules regarding which email to permit into your inbox and what you want to filter out or block.

- Ideally, it should enable you to set up whitelist, which will indicate particular email and ISP addresses that should always be delivered to the inbox. This will ensure that legitimate email from trusted sources will never be filtered out or accidentally deleted.

- The software should install with ease, with zero or minimal errors encountered during set up. Some anti-spam software requires registration, additional downloads or other steps to be taken before it can be used.

- The software you choose should be stable in its release and workings. One way to check this is to look at the release package and view what the programmers or company states is the last stable release. It is probably not in your interests to buy software that is still in the beta phase, particularly if you are not familiar with the program.

Spam is irritating at best, and maliciously destructive at worst. Buying the right anti-spam software will go a long way toward protecting you from the spammers of the world.

Saving and sending the entire email header is an important step in reporting spam. The header of every email you receive will contain information on the full chain of computers through which the email passed in order to get to you. Generally, most email will pass through at least four computers: The spammer’s computer, the spammer’s ISP, your ISP and finally your computer. This is the most reliable way for an anti-spam service to track down the spammer’s ISP because the spammer will camouflage the “from” address.

As the email passes through each computer, information is added to the header indicating who the mail came from, as well as where they are sending it. While this header information will seem complicated, you just need to make note of the originating ISP, which will be easy to recognize. For example, if you receive your mail through AOL and you note “yahoo” in the string of information, then you will know to report the spam to yahoo.

To read the information in the email header, just right click on the email, choose properties and then either “options” or “header” depending on your email program. Then cut and paste the header path in its entirety, into the body of the email. Finally, forward the spam email first, to the spammer’s ISP, and then next to spam reporting agencies

You should also forward the spam to the Federal Trade Commission (FTC). You can do this at the website: uce@ftc.gov. While the FTC will not take action on individual incidents, they will add the spam to a database reffered to as UCE (unsolicited commercial email)

A common spam scam you may come across is called a “419 Scam”, or the Nigerian Advance Fee Fraud. These spam emails generally relates a tale of woe – a death in the family and a huge inheritance that the sender needs your (financial) help to claim. As improbable as it sounds, many people have fallen for this scam and millions of dollars have been defrauded from them. Fax a copy of this spam along with the header information to the United States Secret Service.

Here is a list of the agencies you may report spam to, along with the type of email they can handle or will deal with.

The Federal Trade Commission (FTC).
www.ftc.gov/bcp/conline/edcams/spam/ – This site offers you information about the law enforcement actions that have been taken against deceptive mailers and companies and those who do not honor opt-out requests from email recipients..

www.spamabuse.org
This is a third party reporting agency.

www.spamcop.net
Another third party agency which will report spam on your behalf to the relevant anti-spam agency.

For stock fraud, email the Securities and Exchange Commission (SEC) at enforcement@sec.gov . They are prosecuting however they are only able to deal with fraud in email that has to do with stocks and bonds.

Incoming search terms:

• make money by reporting abuse

The spammers collect these addresses using automated programs called spambots. Spambots are designed to harvest the email addresses from these web sites. They scan every page on the site, collecting any text containing the symbol “@” they find. The email addresses they collect are compiled into a database, loaded into a bulk-emailing program and out goes the spam. Often, these harvested email addresses are also sold to other spammers ; once you email address makes it to a spammer’s mailing list, it will make it onto their fellow spammer’s lists.

Some websites require you to register before you can place an order or access certain parts of the site. Not all these websites will be as protective of your email address as you may wish. Newsgroups are particularly notorious for exposing their users’ email addresses to the spam gatherers. Most newsgroups do not take a great deal of care to hide the email of their users, and each and every email member email address is exposed and up for grabs by spammers. Some of the wbsites that aask you to register may also sell to spammers.

Another method commonly used by the spammers is to target a domain. They simply guess or make up every possible variation of email address based on the domain name, for example @yourDomain.com . They create a mailing list of these addresses and then spam them. Corporate emails are especially vulnerable, as their emails have a distinct format such as @BusinessName.com.

While most of the spam will bounce, it really does not bother the spammers because they can and do send out millions of this type of junk mail a day. A small proportion of the emails will actually be legitimate and will receive the spam – that is good enough for the spammer. This method of gathering email addresses is called a brute force spam attack.

One way to defend against this is to make it more difficult for the spider to harvest your email. When you place your email address on a web site, remove the @ symbol and replace it with the word “at.” This makes it far more difficult for the spam harvester to gather your address, because it cannot be gathered mechanically; it can only by read by a human who is actually reading the site. Alternatively, you should display your email address as an image rather than as text.

The spam blocker differs from a spam filter in that its function is specifically to block most of the incoming spam. The spam filter works by organizing email that it identifies as spam into folders, and leaves it to you to take further action on. The spam blocker, on the other hand, is specifically programmed to prevent spam from getting through. With a spam blocker, you do not have to deal with the spam it detects and blocks.

So How Does a Spam Blocker Work?

The spam blocker will log into your mail server email account every 10 minutes, inspecting it for spam email. It immediately destroys any viruses, and gets rid of any obvious spam such as email that contains adult or pornographic material. Undesirable email is flagged and then redirected to a folder specifically for spam. You will have an opportunity to sort through this spam folder to verify that no legitimate email is mistakenly diverted there. Any email that it is on your white-list or which it determines as legit will be left on the server to be downloaded as normal.

If an email is from an unknown source and the spam blocker cannot clearly categorize it as either legitimate or spam, it is quarantined in a specific folder until you either move it or delete it. The quarantined spam is usually held in this folder for up to 30 days, or until you take action on it. The spam blocker keeps track of the particular action you take on each quarantined email e.g. if you delete the email. It will “remember” this action and use it to create a new filtering rule that it will apply to future incoming email.

What are the Benefits of a Spam Blocker?

- A spam blocker frees up storage space. Most mailboxes have a very limited capacity to store email. Spam takes up space, and a spam blocker generally prevents large files from making it into your main folder.

- By blocking spam rather than just filtering it, the spam blocker helps minimize the amount of time you have to personally sort through your spam email.

- Because this anti-spam software deletes spam, it drastically lowers the risk of a computer virus infecting your system.

- Many spam blockers are available online for immediate download, are usually very easy to install and generally do not require further configuration..

Many email services offer spam blocker software. If, however, you choose to buy your own, make sure you get one that is compatible with your service. Also take into account the level of blockage it offers as well as flexibility it offers in letting you customize the settings to your own preferences.

If there is any doubt as to whether or not the email is from who it purports to be, contact the company immediately to confirm and clarify the request for information. Be sure to call a phone number from your statement. Calling the phone number in the email is probably a direct line to the identity thief.

Never click on a link in any such email. To do so would be to risk downloading malicious Trojan horse spyware, which will install keyloggers in your computer system. This would provide hackers direct access to all the personal data stored on your computer, which they will use for their own nefarious financial gain.

Never, ever fill out forms contained in an email that request personal information. The mere request for this information should ring a loud alarm bell. Phishers are able to use HTML to design very official-looking email messages.  Any information entered into these forms goes directly to the phisher

Never trust links contained in unsolicited email. Phishers have devised ways to spoof legitimate website links. Common tricks that are used include misspelling web addresses or using sub-domains that include the name of a legitimate business.

An email link can also be “masked” in such a way that it displays a very official looking text-link to a legitimate company’s website, but clicking on it will take you to the phisher’s web site.

Do not cut and paste the link contained in the message into your browser. Type the address of the legitimate company in a separate browser window, so as to bypass having to click on the link in a suspected phishing email.

Always be suspicious of impersonal email. Almost all email communication from legitimate businesses will contain some specific piece of personal information that is not readily available to anyone but you. An email from your bank, for example may include part of your account number.
Always keep in mind that here are malicious people out there who do nothing more than think up creative, innovative ways to get at your personal information.

Be sure to use anti-syware and anti-virus software, and keep these regularly updated. Anti-spam filter software may help eliminate or minimize the amount of phishing spam you will receive in your inbox.

Be very cautious of opening any emailed attachments you receive, even if they seem to be from an acquaintance.

Help catch the phishers by reporting any phishing attempts. Forward the phishing email to the company that is being spoofed. Also forward it to these email addresses as well:
spam@uce.gov and reportphishing@antiphishing.org. This information will be used by the Anti-Phishing Working Group to fight phishing. This organization is a coalition between the internet industry, and financial institutions and law enforcement.

Learn more and stay informed by visiting the Federal Trade Commission’s Identity Theft website: www.consumer.gov/idtheft.

Anti-phishing software works by detecting phishing content that may be contained in an email. It is genrallly used in conjunction with your email service as a toolbar. This tool bar will display the real name of any website you visit, and expose any spoofed websites that phishers may attempt to use.

This software is offers a second line of defense to for blocking phishing attacks and sites that might have foiled and bypassed by your browser’s built-in protection. Here are a few of them:

Earthlink Toolbar Scamblocker
Offers a check towards a phishing blacklist of sites
Checks the owner and location of the web site
Prevention against phishing and pop ups

Earthlink offers a free browser toolbar that includes ScamBlocker, an application that protects you against phishing scams and phishing pop ups. It will, for example, warn you when you attempt to connect to a website that is on Earthlink’s balcklist of fraudulent sites. It will analie each web page hat you visit and display a security rating of the webpage on its toolbar.

Earthlink’s Scamblocker can be downloaded at this link:

http://www.earthlink.net/software/free/toolbar/

Netcraft Anti-phishing Toolbar
When a one recipient of a phishing email reports it, the relevant URL is blocked for the rest of the Netcraft community members.

It will display for you the website’s hosting location, which will help expose fraudulent urls. Say, for example, you are on the bankofamerica.com website, the hosting location is unlikely to be in Poland.
The toolbar will also detect any web addresses that contain letters or characters that are only used in the URL to deceive.

The Netcraft Anti-phishing Toolbar can be downloaded at this link:

http://toolbar.netcraft.com/

TrustWatch Toolbar
This free toolbar is also designed to protect against phishing, identity theft and internet fraud. It does real-time checks to let you know if a web site you are visiting has been verified by a legitimate third party organization, and if it is therefore safe to transmit your confidential personal information. It is the internet equivalent of a credit check.

The TrustWatch Toolbar can be downloaded at this link:

http://toolbar.trustwatch.com/

Stopzilla Anti-Spyware 5.0
STOPzilla works by detwecting and blocking Phishing Attacks, Popup Ads, Spyware, Adware and other malicious applications. It also provides hijack protection.

Stopzilla can be downloaded at this link:

http://www.stopzilla.com/

Spybot – Search and Destroy
This is  a free Anti-Spyware application. An important feature of this application is that it will Write-protect your computer’s HOSTS file, which is a primary target of phishers’spyware.

Spybot can be downloaded at this link:

http://www.safer-networking.org

Webroot’s Phish net
Phish Net employs a dynamic blacklist to protect against phishing.  The application stores your personal data such as credit card numbers, social security numbers, etc. When you visit a site and attempt to enter this information, a pop-up will alert you that it is not on your list of trusted sites, and will expose any redirects that the may be involved in the transmission of your data. It will also verify that the site has an encrypted connection before it transmits the data.

Webroot’s Phish net can be downloaded at this link:

http://www.webroot.com/consumer/products/

Spammers were quick to adopt crossposting as a tool of their trade. Now, they could send the same electronic message to thousands of newsgroup members at the one time. Not only could they target a larger audience with one posting, but they also did not have to differentiate between the interests and focus of the individual forums that they targeted. What’s more it cost them next to nothing to spam these newsgroups.

As email became an increasingly widespread mode of communication, the spammers shifted their focus the massive audience that it made available to them. Mass emailing software soon became another essential tool of their trade, as they begun to use this application to send junk email to thousands upon thousands of unwilling recipients.

The spam industry also adapted the available Internet technology to create the “spambot”. A spambot is an automated program that will rove the Internet, “harvesting” email addresses from newsgroup postings and from other websites. It literally gathers thousands of email addresses in a single hour. These are compiled into bulk mailing lists with which the spammers can thousands of victims at a time.

The practice of sending out unsolicited, unwanted junk email and junk postings came to be called “spam.” The term is commonly believed to have been derived from a British comedy skit by Monty Python, in which a restaurant serves each meal with a side of spam. As a waitress emphasizes to a couple the availability of spam with every dish, a group of Viking patrons break out in song, singing “SPAM, SPAM, SPAM… lovely SPAM! wonderful SPAM!” in a loud chorus. In the 80′s, the term was adopted to refer to the junk emails and postings, and the name stuck.

The earliest, most widely known incident of commercial spamming dates back to 1994. It involved two lawyers who spammed USENET to advertise their services as immigration lawyers. They later expanded their marketing efforts to include email spam. The incident is commonly referred to as the “Green Card Spam.”

This nefarious industry has since grown in leaps and bounds. Today, more than half of the trillion-plus emails that are sent and received are spam. Initially, spam was generally advertising-related email. In more recent years, however, a particularly nasty crop of spammers has emerged, who send out their spam with nothing less than malicious and/or criminal intent. Some send out spam that contains viruses or malicious code. Others devise scams intended to defraud you of your money. And then there are those whose focus is identity theft.

Benign or malicious, commercial or criminal – spam has transformed the way we communicate electronically, and will continue to do so well into the near future and very likely beyond. Spam has become a regular, albeit unwanted, fact of online life.

Incoming search terms:

• brief history of internet spam
• history of internet spam
• inurlregular linkfree