On Feb 15 2005, George Ou wrote:
According to this article http://www.spamhaus.org/news.lasso?article=156,
spamware has improved it's capability to avoid black listing by using the
legitimate outbound SMTP servers of it's infected victim. As a result, an
increasing amount of spam is coming from legitimate mail gateways.
Does anyone have more detailed information on spamware and how it manages to
do this? Does it steal SMTP server configuration information from the
If a trojan or spyware/spamware is installed on a user's Windows
computer, then it can do everything a user can do. The actual details
of how it's done don't matter, because you can never fully protect
against that sort of abuse.
All a program has to do is to move the mouse and simulate keyboard
typing and then it has all the privileges of a user. If a password
needs to be typed repeatedly, it can be intercepted and saved. Or the
program can just wait for the user to type in credentials, and then
hijack the mouse and keyboard. Other methods are simply programming
shortcuts.
The only limit is how smart the black hats are, and that depends on how
much they are getting paid to write the spamware.
--
Laird Breyer.
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg