- Chelsea Handler tackles system racism in ‘Hello Privilege. It’s Me, Chelsea’ 7 Years Ago
- Gun control proposal: Trump, lawmakers considering background check-conducting app Today 9:05 AM
- How to stream Browns vs. Jets on Monday Night Football Today 7:00 AM
- What are anons? Today 6:30 AM
- How to stream Eagles vs. Falcons on Sunday Night Football Today 6:00 AM
- How to stream ‘Power’ season 6, episode 4 Today 5:00 AM
- How to stream WWE’s Clash of Champions 2019 Saturday 8:00 PM
- How ‘F*ck off Scotland’ became a Scottish rallying cry amid Brexit madness Saturday 6:28 PM
- A Missouri officer resigned after his Islamophobic Facebook posts surfaced Saturday 5:08 PM
- Adding ‘Triggered’ to stock photos of white men creates Netflix comedy special thumbnails Saturday 3:10 PM
- New restaurant in New York has a seriously unfortunate name: ‘Qanoon’ Saturday 1:38 PM
- These are the 10 best ‘Star Wars’ ships Saturday 12:41 PM
- Google Maps helped solve a decades-old missing persons case Saturday 12:27 PM
- Teen who plotted deadly swatting prank over Call of Duty argument gets prison time Saturday 11:58 AM
- RIP to the real star of ‘Stranger Things’: Steve Harrington’s mullet Saturday 11:04 AM
World’s third largest spam net shut down
Taking out one fifth of all the world’s spam was as simple as eliminating its leaders.
The Internet just became 18 percent more spam free.
The third largest spam network in the world, Grum, was shut down yesterday after a coordinated attack from security companies and local Internet service providers.
“Grum’s takedown resulted from the efforts of many individuals,” Atif Mushtaq, a researcher for Malware tracker FireEye wrote. “This collaboration is sending a strong message to all the spammers: ‘Stop sending us spam. We don’t need your cheap Viagra or fake Rolex.’”
Grum worked thanks to a small group of puppet masters, which FireEye calls “command and control centers,” that controlled infected computers across the world.
The puppets spammed as their masters ordered, to massive success: The network comprised one fifth all the world’s spam.
Taking out Grum was as simple as taking out the puppet masters.
That began on July 17, when Dutch ISP’s took out two command and control centers in the Netherlands. But as soon as those were taken down, another popped up in Panama. A local ISP there caved after international pressure. But, according to Mushtaq, as soon as the Panamanian control center disappeared Grum jumped international borders again, this time spreading out to five different locations in the Ukraine.
That’s when Mushtaq called for support. Working with security company Spamhaus and Russian ISP’s, they used what a Mushtaq only described as a “heavy-handed” approach to take down the remaining command centers.
The network is still spamming, Mushtaq said, like a last surge of neurologic energy in a dead animal. But there’s a good chance that will end soon.
According to data coming from Spamhaus, on average, they used to see around 120,000 Grum IP addresses sending spam each day, but after the takedown, this number has reduced to 21,505. I hope that once the spam templates expire, the rest of the spam with fade away as well.
When the appropriate channels are used, even ISPs within Russia and Ukraine can be pressured to end their cooperation with bot herders. There are no longer any safe havens.
Kevin Morris is a veteran web reporter and editor who specializes in longform journalism. He led the Daily Dot’s esports vertical and, following its acquisition by GAMURS in late 2016, launched Dot Esports, where he serves as the site’s editor-in-chief.