According to Kaspersky Lab’s October spam report, the amount of spam in mail traffic decreased by 3.7 percentage points and averaged 77.4% for the month. Recently, there have been major changes among the top 20 sources of spam: in September India took over top spot from long-term leader the USA, and the changes continued in October with Russia unexpectedly claiming first place having distributed 11.3% of all spam. For the first time in a long time, the USA dropped out of the top 10 altogether finishing the month in 18th place. India (8.5%), Ukraine (5.6%), the UK (4.7%) and Brazil (4.5%) were the other leading sources in October.
The dramatic reduction in spam traffic originating from the USA was caused by the closure of the Pushdo/Cutwail and Bredolab botnet command centers, both of which made use of networks of zombie computers that were primarily located in the USA. The activities of a similar computer network infected by Bredolab were seriously impaired following intervention by Dutch law enforcement agencies, which resulted in a further reduction in the overall amount of spam.
Operations by law enforcement agencies also affected the various spam categories. The most important change caused by the closure of the Bredolab botnet command centers was a brief decrease in the quantity of spam that contained malicious attachments. The level of pharmaceutical spam was affected by the closure of the Spamlt partner program on 1 October. However, this had a knock-on effect, allowing adverts for pornography and online casino to regain their niche in the spam market. When one partner program closes, the spammers immediately look for other ways to make money. “It’s very likely that nearer the end of the year spammers will turn to Christmas-related mailings,” added Maria Namestnikova, Senior Spam Analyst at Kaspersky Lab.
In October, PayPal once again had the unenviable distinction of being targeted most by phishers, accounting for one third of all attacks (61.3%), while there was renewed interest in Facebook (8.4%) after a lull in September. The social networking site ended up taking over second place from eBay (4.5%). The other two most popular targets for phishing attacks were HSBC (4.3%) and Blizzard Entertainment (3.5%), the World of Warcraft developer.
The full version of the spam report for October 2010 is available at www.securelist.com/en.