- Instagram and Facebook are reportedly blocking queer ads Friday 8:58 PM
- Review: Tyler Perry’s ‘A Fall From Grace’ is both nonsensical and utterly predictable Friday 6:48 PM
- Is Hulu censoring the Iran episode of Anthony Bourdain’s ‘Parts Unknown’? Friday 6:05 PM
- Trump admin celebrates Michelle Obama’s birthday by proposing rollback of her signature initiative Friday 4:01 PM
- TSA apologizes after agent grabs indigenous woman’s braids, says ‘giddyup’ Friday 3:28 PM
- Blue Bell ice cream licker pleads guilty Friday 2:54 PM
- 7 fortune-telling sites for when you’re bored Friday 2:21 PM
- Governor bans sex puns on free condom wrappers Friday 2:16 PM
- Is Justin Bieber’s ‘Yummy’ video secretly about Pizzagate? Friday 1:01 PM
- Woah Vicky rips out her hair in botched cultural appropriation attempt Friday 12:30 PM
- Here’s an exclusive look at ‘Weathering With You’ Friday 11:57 AM
- TikTok dudes are dipping their balls in soy sauce for ‘science’ Friday 11:49 AM
- Pete Buttigieg’s denial of fixing bread prices becomes its own meme Friday 11:10 AM
- Houston Astros get torched with buzzer memes after new revelation Friday 10:41 AM
- Teens are eating cereal out of each other’s mouths for clout Friday 10:34 AM
World’s third largest spam net shut down
Taking out one fifth of all the world’s spam was as simple as eliminating its leaders.
The Internet just became 18 percent more spam free.
The third largest spam network in the world, Grum, was shut down yesterday after a coordinated attack from security companies and local Internet service providers.
“Grum’s takedown resulted from the efforts of many individuals,” Atif Mushtaq, a researcher for Malware tracker FireEye wrote. “This collaboration is sending a strong message to all the spammers: ‘Stop sending us spam. We don’t need your cheap Viagra or fake Rolex.’”
Grum worked thanks to a small group of puppet masters, which FireEye calls “command and control centers,” that controlled infected computers across the world.
The puppets spammed as their masters ordered, to massive success: The network comprised one fifth all the world’s spam.
Taking out Grum was as simple as taking out the puppet masters.
That began on July 17, when Dutch ISP’s took out two command and control centers in the Netherlands. But as soon as those were taken down, another popped up in Panama. A local ISP there caved after international pressure. But, according to Mushtaq, as soon as the Panamanian control center disappeared Grum jumped international borders again, this time spreading out to five different locations in the Ukraine.
That’s when Mushtaq called for support. Working with security company Spamhaus and Russian ISP’s, they used what a Mushtaq only described as a “heavy-handed” approach to take down the remaining command centers.
The network is still spamming, Mushtaq said, like a last surge of neurologic energy in a dead animal. But there’s a good chance that will end soon.
According to data coming from Spamhaus, on average, they used to see around 120,000 Grum IP addresses sending spam each day, but after the takedown, this number has reduced to 21,505. I hope that once the spam templates expire, the rest of the spam with fade away as well.
When the appropriate channels are used, even ISPs within Russia and Ukraine can be pressured to end their cooperation with bot herders. There are no longer any safe havens.
Kevin Morris is a veteran web reporter and editor who specializes in longform journalism. He led the Daily Dot’s esports vertical and, following its acquisition by GAMURS in late 2016, launched Dot Esports, where he serves as the site’s editor-in-chief.