MX Lab, http://www.mxlab.eu, noticed a significant drop in the spam level since 22 September 2010. The global numbers show us a decline of approx. 40% even during business days when spam levels are high.
As you can see on the graph, the decline started on 21st of September 2010 and continued to drop on the 22nd of September.
We detected one major absentee in the spam messages: the Canadian Pharmacy. This kind of spam can be related to the botnet Rustock, believed to be operating from Ukraine or Russia, and the activity on this botnet has dropped from approx. 50 to 60% of the daily worldwide spam volume to 0%.
Another contribution in the spam decline can be assigned to the closure of Spamit.com as this could also have affected the botnet herders of Rustock as well.
Spamit.com was the affiliate program that has paid some of the world’s top spammers to promote pharmacy Web sites and announced to close the doors at the end of September.
The homepage of Spamit.com was replaced by the following announcement:
Dear partners and colleagues!
As we announced we turned off all shops and stoped to recieve traffic. Last week we payed more than 95% of all commissions. Stats will works till 10.10.2010. After that stats will be unavailable. Please take your money from us before this time!
Also please do not use our shop templates with other partner programs. All of them have their own templates.
Thanks again to all of you for the trust and support!
Screenshot of the current hompage:
Spamit.com was also responsible for sending drugs spam on behalf of the Canadian Pharmacy and it is quite often related with Glavmed.com in articles (more information).
Will this mean that we get less spam? No, probably not. It will take some time but we expect to see Rustock getting back to business or other botnets may fill in the gap.
Three other botnets, Grum, Letho and Pushdo, are gaining ground with the drop down of Rustock from 10% – 20% towards 20% while the botnet Grum almost reaches 30% of the daily spam.
View full post on mxlab – all about anti virus and anti spam
Related Posts
- Analysis: Spam report: September 2010
The most significant event of the month was the announcement in mid-September that the Spamlt partner program would be closed down on 1 October.
View full post on Securelist / All Updates... - Spam and Phishing Landscape: September 2010
Malware spam is back after a one-month hiatus! The attack has returned to the forefront of the spam threat landscape in the form of .zip and .html attachments, as discussed in the September 2010 State... - Politics and fraud: virus events of September 2010
October 4, 2010
September saw an overwhelming number of news posts proclaiming the start to a cyber war sparked by Trojan.Stuxnet and providing suggestions as to what the virus maker’s goals might be... - Analysis: Spam report: December 2010
The amount of spam in email traffic increased by 0.3 percentage points compared to November and averaged 77.1%.
Full story: Securelist / All Updates... - Phishing, Spam and Malware Statistics for December 2010
Most abused TLDs
The trend we observed in the last months when the non “classical” TLD increased massively continued in December as well. Contrary to November, where the .com has seen a slight incre... - Spam Volume Back to Preholiday Levels
It appears that the fall in the activity of spamming botnets may have just been a rather extended year-end holiday. Our information indicates that spam activity has returned to pre-holiday levels:
T... - Spam Volume Drop on Christmas Day
The monthly State of Spam & Phishing report has been tracking the decline of overall spam in recent months. The chart below shows the global spam volume dropping significantly since August.
An e... - Sudden spam drop leaves experts baffled
Spam volumes appear to have dropped to averages last seen in 2008 after an expected surge in bogus email over the Christmas period failed to materialise.
Full story: Network World on Security... - Spam and Phishing Landscape: December 2010
The volume of spam continues to drop. We have been monitoring the decline in overall spam volume over the last few months, and the downtrend continued in November. The average daily volum... - Analysis: Spam report: November 2010
The Pushdo/Cutwail and Bredolab botnet command centers have been shut down; the SpamIt partner program went out of business; and a criminal case has been brought against Igor Gusev who is believed to...
Posted on 07 October 2010. Tags: 2010, Drop, Levels, September, Significant, since, Spam
