You are here: silicon.com > Management > SME Director

SME Director

ISPs crippled by spam bug

Backdoor Trojan to blame...

By Andrew Colley

Published: 15 October 2003 09:10 BST

US-based internet security researchers have confirmed that a worm is behind the sharp jump in spam activity which has seen Australian telco Telstra's BigPond ISP take a battering. Other major global ISPs are also starting to creak under the pressure.

Symantec's US security team said spammers are using a multitude of Windows systems compromised by the worm to send massive amounts of unsolicited email, clogging the messaging systems of major ISPs across the globe.

Symantec believes a variation of the Randex worm, first discovered in August, has inserted a backdoor Trojan named mprox, discovered 30 September, into a large number of Windows-based systems.

Windows-based systems infected by mprox provide spammers with an open relay or "proxy server" for sending email and other messages.

"Spammers are using these distributed proxy servers to send out massive amounts of spam and we're seeing this in lots of locations - we're seeing heavy traffic," said Vincent Weafer, senior director of Symantec Security Response.

Randex attempts to propagate by seeking out systems near its host and attempting to log in to them using simple passwords. Each system it annexes is infected with the Trojan.

Most varieties of Randex affect Windows 2000, Windows NT and Windows XP systems, and according to security researchers the worm was designed to be controlled remotely through an Internet Relay Chat (IRC) channel.

According to Weafer, ISPs began reporting the surge in unsolicited email last week.

Andrew Colley writes for ZDNet Australia

  1. Zones
  2. Management
  3. Networks
  4. Software
  5. IT Services
  6. Hardware
  1. Verticals
  2. Public Sector
  3. Financial Services
  4. Retail & Leisure

  • Jobs
Spanish Speaking Cisco Networking Guru? Apply now!! N. London/ Cisco

A technical role allowing large amounts of hands-on work, project work & huge amounts of training. Send a copy of your up to date CV to K.eden at ...

Business Object Data Integrator (BODI) - 30,000 - 50,000 Birmingham

You will be working on very large projects and be involved in the Data Quality work on massive amounts of data. To apply to this position please send ...

Do you want to work for the best ? Linux, Unix, Systems Administration

You will receive huge amounts of career development from day on and be given to the opportunity to progress throughout your career. Salary negotiable ...

CIO50 2008
The silicon.com CIO50 2008 profiles the most influential and innovative tech chiefs in the UK across all industries and organisation size, from the biggest FTSE100 companies to high growth dot-com start ups and the public sector. The list was voted on by the UK CIO community and a panel of experts. Find out more in our latest special report.





Quick Sitemap Links: