New Spam Trick: Mimic Legit Newsletters

Spammers have tweaked legitimate e-mail and sent them through normal spam channels.

Spammers have something new in their bag of tricks. Those ubiquitous Viagra ads have been disguising themselves as e-mail newsletters, the kind you get to find out the latest airline deals or keep up with your fantasy football team.

Spammers haven't actually broken into legitimate marketers' computer systems to send out the messages. Rather, like the phishing scams that lift the code off the real Web sites of financial institutions, spammers have tweaked legitimate e-mail and sent them through normal spam channels.

The technique appears aimed at bypassing human and software controls. Recipients might not immediately realize they are opening spam, and anti-spam filters might not be able to aggressively block them for fear of blocking legitimate newsletters as well, anti-spam experts say.

These messages started appearing a month ago, and so far, they have been relatively small in numbers, said Doug Bowers, senior director of anti-abuse engineering at Symantec Corp., a vendor of anti-spam products. He suspects spammers are fine-tuning their techniques to see what works.

"It's sort of the early warning sign for us," Bowers said.


  • Microsoft Opens Azure Sentinel Marketplace for Partner Solutions

    Microsoft recently announced preview releases of several Azure Sentinel improvements, including connectors for partner solutions within Azure Sentinel.

  • 2021 Microsoft Conference Calendar: For Partners, IT Pros and Developers

    Here's your guide to all the IT training sessions, partner meet-ups and annual Microsoft conferences you won't want to miss.

  • The 2021 Microsoft Product Roadmap

    From Windows 10X to the next generation of Microsoft's application server products, here are the product milestones coming down the pipeline in 2021.

  • After High-Profile Attacks, Biden Calls for Better Software Security

    Recent high-profile security attacks have prompted the Biden administration to issue an executive order aiming to tighten software security practices across the board.