Spam is up by 200%. Rustock botnet revival to blame.

Filed Under: SophosLabs, Spam

Two weeks ago we wrote about a significant drop in spam volumes caused by the shutdown of McColo hosting. There was no doubt that spam traffic will get back to its previous levels (if not higher) eventually. The question was -- when?

Unfortunately, McColo made a brief comeback on November 15th, which gave enough time to Rustock botnet owners to reconfigure the botnet, resuming the control. It took them less than 10 days to put it back in the "business". 

Starting yesterday, the amount of spam coming to our traps has gone up 3 times (a 200% increase) .

rustock_spam.png

Here is an example of a spam campaign it spews. A typical "Canadian Pharamacy" spam brough to you by the "good" guys from GlavMed affiliate network.

rustock_sample.png

The spam volumes haven't got back to where they were previously, but I don't think we'll wait long before publishing an updated graph here.

You might like

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s