AOL Names Top Spam Subjects For 2005 205
JamesAlfaro writes "Donald Trump and "penis patch" were the most popular subject lines used by spammers this year, as the fraudsters grew more sophisticated in trying to trick consumers, America Online said Wednesday in its third annual Top 10 Spam List. Six out of the 10 top subject lines this year fell into what experts call "special-order spam," which pretend to be from a friend, or part of a legitimate, customer-driven transaction."
Donald Trump and "penis patch" (Score:4, Funny)
Re:Donald Trump and "penis patch" (Score:4, Funny)
Donald Trump would say with a new hand move... (Score:2)
Sadly... (Score:4, Insightful)
Re:Sadly... (Score:4, Insightful)
Doesn't necassarily mean that it is bringing in more business to those who employ spammers.
Re:Sadly... (Score:2, Informative)
It's not that expensive or difficult to send a spam out to, say, two million addresses. Even if 95% are blocked, and only
Re:Sadly... (Score:2)
It's pretty easy to trace which customer is responding to spam.
AOL could really help out.... (Score:5, Insightful)
1) Clean up your 20 year old database of it's unused usernames
2)Blacklist any server/ip/whatever that sends email to x amount of disabled accounts (I would say x ==5 but any value really would work)
3) Publish said blacklist
There is no way a spammer could avoid an AOL address. Start doing this with hotmail, yahoo mail, netscape mail, whatever mail, and I think we would be able to lock off the "bad" senders a lot faster than projects such as spews.
Wouldn't that require a change of TOS? (Score:2)
Re:AOL could really help out.... (Score:5, Interesting)
Set up two accounts on your mail server (example.org): aaron@example.org and zeke@example.org -- any two names that sound legitimate and sort very early/very late. Then, make sure these two names are well-published; you may put them on your webpage, include them in
When anything hits one of these mailboxes, just block the relevant traffic -- autolearn the piece of spam, _temp_ block the IP and/or bump its score.
Re:AOL could really help out.... (Score:2)
Pity the bored IANA employee who one day decides that example.com is missing a mail server.
Re:AOL could really help out.... (Score:3, Informative)
Re:AOL could really help out.... (Score:5, Interesting)
Re:AOL could really help out.... (Score:2)
I find that I can cut most of them by excluding patterns like these for the reverse-resolved address:
*.res.rr.com
*.??.comcast.net
I enable a filter with a long list of these whenever a new spam/virus storm breaks out. Could probably leave it enabled all the time as we (as a Dutch company) never get any valid mail from addresses like that, but you never know...
Re:AOL could really help out.... (Score:2)
Re:AOL could really help out.... (Score:2)
Re:AOL could really help out.... (Score:2)
Re:AOL could really help out.... (Score:3, Informative)
...subject to some minimum amount of time to allow for temporary errors when the server crashes and the admin only gets it halfway back up, or someone breaks the config, or the domain name or hosting contract expires and mail gets routed to a parking server until it's renewed, etc.
Spelling (Score:5, Funny)
Re:Spelling (Score:2)
Re:Spelling (Score:4, Funny)
Paypal pfishing (Score:3, Insightful)
Re:Paypal pfishing (Score:5, Funny)
Re:Paypal pfishing (Score:2)
Bad memory ? (Score:4, Interesting)
From the article:
How can anyone possibly fall for these ? I have the worst memory of anyone I know (or remember ;), and I have no trouble remembering if I have any bending applications or e-mail conversations.
Or are these things trying to make people think that they've accidentally gotten someone elses mail and might profit by playing along - are these messages trying to tempt people into trying to commit fraud in order to defraud them ? That would be ironic, and essentially the same tactic that Nigerian letters used - could the senders of Nigerian spam claim patent violation ?-)
Re:Bad memory ? (Score:2)
Believe it or not, the general populace is pretty dumb and high proportion of them use AOL.
Re:Bad memory ? (Score:2)
Re:Bad memory ? (Score:2)
Re:Bad memory ? (Score:2)
So, what you think looks like a subject and even semi-normal text but seems weird, is really about getting past the spam filters and so that you can see it and make an "informed d
Re:Bad memory ? (Score:2)
There's a goodly number of people out there who will see a subject like that and think: "IDENTITY THEFT! SOMEONE'S APPLYING FOR MORTGAGES WITH MY PERSONAL INFORMATION".
I know this for a fact because a coworker's code, which was supposed to email everyone who'd purchased from us exactly 21 days ago, emailed everyone who'd purchased from us in the last 2 years. We've since rec
Re:Bad memory ? (Score:2)
After having spam detail for a few months at our company when the former sysadmin left and getting to see more than my share of subject lines, I have to say "yes". The spammers prey on three types of people: the naive, the desperate and the degenerate.
Re:Bad memory ? (Score:2)
Re:Bad memory ? (Score:2)
Does that have something to do with blackjack and hookers?
AOL (Score:4, Funny)
Me too!
Re:AOL (Score:2)
But it's:
AOL Names Top Spam Subjects For 2005
NOT
AOL Named Top Spam Subject For 2005
Re:AOL (Score:2)
They all want a piece of the "AOL Names".
FYI (Score:4, Informative)
Re:FYI (Score:2)
http://www.megat.co.uk/wrong/ [megat.co.uk]
Re:FYI (Score:5, Insightful)
Re:FYI (Score:2)
Re:FYI (Score:2)
It doesn't appear illegal, because according to the pre-IP concept of ownership, the company gave you two copies of the software (one preinstalled, one on the CD), and you can resell the extra
Re:FYI (Score:2, Funny)
- Lose 6-20 inches in one hour
Someone has to try using both of these products at the same time. Let them fight it out and see which one is most effective. We could place bets on whether it ends up longer or shorter.
Re:FYI (Score:2)
And others claim to gain 3 inches in 2 weeks.
Either something very strange is going on or I'm confused.
Most Effective Subject Line (Score:2, Funny)
It's been said before (Score:2)
If you have to get sneaky or sleazy to try and sell your products, perhaps it's a sign no one wants it?
Re:It's been said before (Score:2)
Most places doing this are scammer/phishers, not legitimate businesses. Thus, they are already sleazy and will do anything they can to get people to click on the links.
Re:It's been said before (Score:2)
Change of Tactics?? (Score:3, Interesting)
Anyone know why this is happening?
Ed Almos
Re:Change of Tactics?? (Score:2)
I'm just upset because (Score:5, Funny)
Re:I'm just upset because (Score:2)
the AC
Donald Trumps Penis Patch? (Score:3, Funny)
Oh yeah, they are getting really sophisticated in their trickery. Who wouldn't open an email with the subject line of "Donald Trump's Penis Patch"?
Re:Donald Trumps Penis Patch? (Score:2)
Penis Patches.... (Score:4, Funny)
Yaaaaaaaaaaargggggh! Avast! I see booty
(etc etc etc)
Re:Penis Patches.... (Score:2)
And coming to an email client near you in 2006... (Score:3, Funny)
depends... (Score:3, Informative)
10 Subject: Re:
4 Subject: IMPORTANT MESSAGE
3 Subject: BE INFORMED ( UNCLAIMED - PRIZE)
2 Subject: UK LOTTERY WINNING NOTIFICATION Batch: 074/05/ZY369
2 Subject: AWAIT YOUR URGENT REPLY
1 Subject: àúä äåìê ìâìåú àú îä ùàó àçã ìà øåöä ùúãò...
1 Subject: contact your claims agent
1 Subject: Your Urgent Attention Is Required
1 Subject: WINNING NOTIFICATION LETTER.
1 Subject: Urgent Funds for Investment.
1 Subject: TRUSTING YOU IN ACTUALIZING THIS
1 Subject: THANKS
1 Subject: REQUEST ASSISTANCE/PARTNERSHIP .
1 Subject: REPLY TODAY PLEASE!!!
1 Subject: RE: URGENT RESPONSE NEEDED
1 Subject: Please kindly get back to me.
1 Subject: PRIVATE AND URGENT
1 Subject: PRAY FOR ME
1 Subject: PLEASE TREAT URGENTLY-------
1 Subject: PLEASE ASSIST
1 Subject: ONLINE DRAWS
1 Subject: NOTICE
1 Subject: NEED YOUR REPLY
1 Subject: Mrs. Nora Walters(Benefactor).
1 Subject: Mrs Mary Koffi/ Michael son.
1 Subject: Martinez
1 Subject: MY INTRODUCTION
1 Subject: LAST WINNING NOTIFICATION$$$
1 Subject: INVESTMENT
1 Subject: Hope to hear from you soonest.
1 Subject: Good day
1 Subject: From: DR. JOSEPH
1 Subject: FROM DR IBRAHIM DABLA
1 Subject: FRANCIS SULE
1 Subject: FOR YOUR CONSIDERATION
1 Subject: FINAL WINNING NOTIFICATION!!!
1 Subject: Expecting your response.
1 Subject: Dear Friend.
1 Subject: Contract Payment From Central Bank Of Nigeria
1 Subject: Congratulations! You won...
1 Subject: COULD YOU BE ENTRUSTED WITH US$50,000,000 (?)
1 Subject: CONTACT YOUR CLAIM AGENT
1 Subject: CONGRATULATIONS- YOU JUST HIT THE JACKPOT.
1 Subject: CALL FOR LOTTERY CLAIM!!!!!!!!!!!
1 Subject: ATTENTON////Pascoe???
Apparently I get a different kind of spam than AOL.
Re:depends... (Score:2)
About 200 spam per day tends to be find its way there, mostly
- pharma spam (including 'herbals' and genitalia enlargement)
- stock pumping
- spams I can't read because they're in Korean
- spams I can't read because they're in Chinese
- w4r3z (HUGE spike lately, of identical spams, pretending to sell 'OEM' software and 'instant downloads')
- spams I can't read b
Re:depends... (Score:2, Informative)
At least your subjects make sense - here is a sample of the last few I got:
see homophobia, Brew but iron
The finish a clansman pothead
Re: It swim the mangrove
on Barth, may coney
An fall it fearful zippy
on break he steamboat
I just found out about her. megalomania mantic
Re: in do no bedside effectiveness
But then, maybe I am just too stupid to understand all the great things I am missing due to my spam filter...
Re:depends... (Score:2)
I always wonder why MSN/Hotmail, being the largest 419 scam distributor, does not do some spamscanning on outgoing mail. Those 419s are very easy to catch, at least for my SpamAssassin filter.
Wait... (Score:2, Insightful)
Let's say I get some great real-estate offers in my email account. I choose to report it as spam, once. AOL or anyone else gets this mail and they can analyze it or do anything they want with it.
The next day I get an identical mail and it gets sent to the SPAM folder. Do they have the ability to see this one as well? What if one that isn't spam gets marked as such, but contains sensetive and personal information?
Re:Wait... (Score:2)
If you don't want people reading your mail, you have one option. Have people sending you mail, and people you send mail to encrypt it.
Nephilium
ITYF they can read *all* your mail (Score:2)
Don't like that? Encrypt it. Emails are like postcards not letters.
Can they? Yes. Do they? Dunno. (Score:2)
Penis patch? (Score:5, Funny)
Re:Penis patch? (Score:2)
Mortgage / lending spam (Score:3, Interesting)
Anyway you can find my data here:
http://www.perpetualbull.com/mortgage-spam/ [perpetualbull.com]
Various regex are used to locate spams of this topic. Not 100% accurate but pretty good
names? (Score:2)
Just wondering...
Anyone else? Korean Ads (Score:2)
Re:Anyone else? Korean Ads (Score:2)
If you search for "Korean spam" on USENET, you'll find that you're hardly alone. ROK systems -- notably KORNET -- have a reputation for combining oddles of bandwidth with a disregard for spam complaints, and they're outside the jurisdiction of the FTC or other non-ROK enforcement bodies...
Re:Anyone else? Korean Ads (Score:2)
(unfortunately they always link to a form where you once again have to enter your e-mail address, sometimes with a dropdown list of domainnames of which you have to select the last one, which apparently means "other", to enable the entry of a full user@domain address)
I know it is contrary to widespread advice, but with Korean mail it really helps! Apparently they have effective an
Re:Anyone else? Korean Ads (Score:2)
Interesting how it sounds like that works for Korean advertisement, shame they're all not like that. Oh well. Thanks for the advice though!
According to my spam archive.. (Score:2)
380 Subject: Remember the old days?
442 Subject: Impotence treatment
443 Subject: Undelivered Mail Returned to Sender
467 Subject: Re:
534 Subject: Message subject
861 Subject: New product! Cialis so
Re:According to my spam archive.. (Score:2)
Its the geeks who don't automate tasks that fail to get laid...
The Essential Spam Quote of the Day (Score:5, Funny)
http://bash.org/?203815 [bash.org]
How is this "more sophisticated"? (Score:2)
How is a subject line of "penis patch" being more sophisticated? If consumers are being defrauded by unsolicited messages with a subject line of "penis patch", I think it's a case of consumers becoming more stupid, not fraudsters becoming more sophisticated...
Information Week oddness (Score:2)
and um... (Score:2, Insightful)
You do realize that they send unwanted advertisements to their own customers right?
Its not as if they are related to AOL services either. For the right price your ad can be sent by AOL to an AOL subscriber FROM AOL
I always keep my penis up-to-date (Score:5, Funny)
Home vs Work (Score:2)
I get a completely different selection of spam on my home and work email accounts.
At work it's 99% online pharmaceuticals. They charge less but give better service, apparently. All 1000 of them.
At home it's sex ads, fake prestige watches and some moron who bombards me with inane stock tips. Possibly morons, because they use two different ways of getting past spam filters.
Then there are the usual subterfuges, like the all-graphics email, the emails with blank times to screw up inbox date sorting, and t
Re:Need s0ftware? (Score:2, Informative)
http://www.spamcop.net/bl.shtml [spamcop.net]
http://dnsbl.njabl.org/ [njabl.org]
http://ordb.org/ [ordb.org]
No need to roll your own. There is even one designed to list dynamic IPs (http://www.dnsbl.nl.sorbs.net/ [sorbs.net]).
Re:Need s0ftware? (Score:4, Insightful)
You don't need to find the lusrs with pwned boxen. They, after all, are only doing what they've been told to do by us technical elitey types.
You just need to realize that the broadband providers are capable of stopping this problem by themselves, with their existing equipment, and the only reason they don't do it is because it would impact their revenue stream (well, that and the high correlation of greed with stupidity).
With Comcast's resources at my disposal, I could stop all spam and virus propagation from their networks in a month or less. But a certain number of customers (mostly spammers and other criminals) would stop paying their monthly bill as a result, and thus Comcast has a simple ROI equation: Screw you over, and get paid, do the Right Thing, and don't get paid.
Easy decision for them, because WE are letting them get away with it. Write your congresscritter, make Comcast (and their ilk) liable for running worm farms.
Re:Need s0ftware? (Score:2)
Or some more complicated magic?
In either case, leave my ISP alone
Re:Need s0ftware? (Score:3, Insightful)
Example: Comcast (or other huge ISP) blocks port 25 by default. To unblock your port 25, call the 1-800 number and make the request. The End.
Yes it will add another hoop to jump through, and will undoubtedly complicate things for n00bs trying to setup whatever flavor of e-mail client they want/need to use, but the vast majority of subscribers aren't using this port.
For companies like Comcast, this is just another added line to the papers they stuff
I've heard worse ideas. (Score:2, Interesting)
And your method would be simple enough that even Comcast might conceivably be competent enough to implement it. Maybe. Unfortunately I am a customer, so I'm kind of pessimistic on that front.
Re:Need s0ftware? (Score:2)
Re:Need s0ftware? (Score:2)
Re:Need s0ftware? (Score:3, Insightful)
Don't need to block port 25. Bad idea in fact. (Score:2)
It'd be easy to block infected machines, and machines that are spamming, using the DOCSIS cable modem (which is controlled by the ISP, not the end user). Reroute all traffi
Re:Need s0ftware? (Score:2)
Deciding what is spam or not based on where it comes from works in some specific cases (ie, the spam bots you talk about) if you could keep up with all such sources. The broader your list becomes the bigger the chance that you will end up blocking non spam mail as well however.
Whitelisting has its obvious problems with regards to people trying to contact
Re:Need s0ftware? (Score:2)
greylisting works just fine here, using qgreylist, it greys a
Re:Need s0ftware? (Score:2)
You are mistaken.
The problem comes down to the delivering MTA treating a temporary failure as a permanent one, and never resending that mail. That is a broken MTA according to the RFCs and is the problem here. There is nothing whatsoever that a greylist implementation can do to prevent this (given we are not using entirely different definitions of greylists)
Of course this is a
Re:Maybe the two are linked? (Score:2)
Re:Maybe the two are linked? (Score:4, Funny)
Re:Maybe the two are linked? (Score:2)
Re:Top 10 criminal verdicts against spammers? (Score:2)
Oh, maybe because some of them are based in other countries whom we do not have extradition treaties with?
Re:Spam is interesting (Score:2)
Re:Spam is interesting (Score:5, Funny)
Re:Spam is interesting (Score:4, Funny)
Re:What a letdown (Score:2)
Some spammer who used the Donald Trump thing probably decided to simply try [lots of potential email addresses]@aol.com. AOL users have a stereotype of being less computer literate, (or at least less "net savy*") and so more likely to actually make money for spammers.
*Man, I do hate that term. Up there with "Information superhighway" and the whole late 90's trend of puttin