Skip to main content
USENIX
  • Conferences
  • Students
Sign in

connect with us


  •  Twitter
  •  Facebook
  •  LinkedIn
  •  Google+
  •  YouTube

twitter

Tweets by @usenix

usenix conference policies

  • Event Code of Conduct
  • Conference Network Policy
  • Statement on Environmental Responsibility Policy

You are here

Home ยป Spamscatter: Characterizing Internet Scam Hosting Infrastructure
Tweet

connect with us

Spamscatter: Characterizing Internet Scam Hosting Infrastructure

Abstract: 

Unsolicited bulk e-mail, or SPAM, is a means to an end. For virtually all such messages, the intent is to attract the recipient into entering a commercial transaction -- typically via a linked Web site. While the prodigious infrastructure used to pump out billions of such solicitations is essential, the engine driving this process is ultimately the ``point-of-sale'' -- the various money-making ``scams'' that extract value from Internet users. In the hopes of better understanding the business pressures exerted on spammers, this paper focuses squarely on the Internet infrastructure used to host and support such scams. We describe an opportunistic measurement technique called spamscatter that mines emails in real-time, follows the embedded link structure and automatically clusters the destination Web sites using image shingling to capture graphical similarity between rendered sites. We have implemented this approach on a large real-time spam feed (over 1M messages per week) and have identified and analyzed over 2,000 distinct scams on 7,000 distinct servers.

David S. Anderson, University of California, San Diego

Chris Fleizach, University of California, San Diego

Stefan Savage, University of California, San Diego

Geoffrey M. Voelker, University of California, San Diego

Open Access Media

USENIX is committed to Open Access to the research presented at our events. Papers and proceedings are freely available to everyone once the event begins. Any video, audio, and/or slides that are posted after the event are also free and open to everyone. Support USENIX and our commitment to Open Access.

BibTeX
@inproceedings {268470,
author = {David S. Anderson and Chris Fleizach and Stefan Savage and Geoffrey M. Voelker},
title = {Spamscatter: Characterizing Internet Scam Hosting Infrastructure},
booktitle = {16th {USENIX} Security Symposium ({USENIX} Security 07)},
year = {2007},
address = {Boston, MA },
url = {https://www.usenix.org/conference/16th-usenix-security-symposium/spamscatter-characterizing-internet-scam-hosting},
publisher = {{USENIX} Association},
month = aug,
}
Download

Presentation Video

Presentation Audio

MP3 Download OGG Download

Download Audio

Links

Paper (HTML): 
http://usenix.org/events/sec07/tech/full_papers/anderson/anderson_html/index.htm...
Paper: 
http://usenix.org/events/sec07/tech/full_papers/anderson/anderson.pdf
  • Log in or    Register to post comments

© USENIX

  • Privacy Policy
  • Conference Policies
  • Contact Us