backtop


Print

Google says it's just as likely spam was spoofed and came from Windows PCs

Microsoft Corp. (MSFT) spam researcher Terry Zink played provocateur when he published a blog indicating he had discovering a thriving Android botnet, which appeared to be driven by app piracy in the developing world.  The evidence he presented was a series of emails with distinctive signatures -- both email header information, and the text signature in the body -- indicating they had originating on an Android device.

Google Inc. (GOOG) has responded by pointing the finger back at Microsoft, suggesting that the headers and signature were likely spoofed to look as if they came from Android.   Comments Google, "The evidence does not support the Android botnet claim.  Our analysis suggests that spammers are using infected computers and a fake mobile signature to bypass anti-spam mechanisms in the email platform they're using."

Android has relatively robust anti-spam guards, so even if the device was infected with malware, Google says it would be difficult to exploit it for spamming purposes.

Spoofing
Spoofing is a time honored technique used by hackers to obfuscate IP requests, email headers, and phone numbers. [Image Soource: PC1 News]

As the text signature implicated Yahoo! Mail, the post also raised awkward questions for that company.  Yahoo! Inc. (YHOO) says that it is investigating the report to see if its email client is being abused.  As with the Android aspect, it's again possible that the header and body were merely spoofed to look like they came from the Yahoo! Mail client on Android, typically a relatively trustworthy source.

Header spoofing is a common, technique used by computer criminals.  As an email's header information and text are easily manipulated (or "engineered" in hacker terms), malicious user can change messages' headers to serve the dual purpose of disguising their true origin and to build trust by making it look as if it originated from a legitimate source.

Terry Zink, the researcher who published the original report, has since backtracked in the comments section of his post, acknowledging that spoofing was a possibility, but commenting that it merely seemed more likely that an Android botnet was causing the spam onslaught.  He did not, however, provide any additional evidence of how he came to that conclusion.

Source: The Register





"You can bet that Sony built a long-term business plan about being successful in Japan and that business plan is crumbling." -- Peter Moore, 24 hours before his Microsoft resignation







Latest Blog Posts
Apple Car is Not Dead
Saimin Nidarson - Dec 5, 2016, 1:00 AM
More News
Saimin Nidarson - Dec 4, 2016, 5:00 AM
More News
Saimin Nidarson - Dec 3, 2016, 5:00 AM
Top News
Saimin Nidarson - Dec 2, 2016, 5:00 AM
Top Stories
Saimin Nidarson - Nov 28, 2016, 1:12 AM
News: Fidel Castro
Saimin Nidarson - Nov 27, 2016, 5:00 AM
Top News
Saimin Nidarson - Nov 26, 2016, 5:00 AM
Top Stories
Saimin Nidarson - Nov 22, 2016, 2:26 AM
Headline News:
Saimin Nidarson - Nov 21, 2016, 1:00 AM






botimage
Copyright 2016 DailyTech LLC. - RSS Feed | Advertise | About Us | Ethics | FAQ | Terms, Conditions & Privacy Information | Kristopher Kubicki