Junking The Junk: Staying Ahead Of Spam Attacks
by Edwin Hageman - Managing Director BT Global MSSP - Monday, 26 December 2005.
4. Never reply to unsolicited mail, even if it is to unsubscribe. This validates your address and, as such, makes it much more valuable to companies that sell email lists. This also applies to the remove link that many spammers include. Ideally you should not even open mail that is unsolicited.

5. Help your anti-spam tool learn what is and isnít junk. Identify false positives and inform it when it misses a piece of spam. This helps build up accurate black and white lists, and identifies the latest techniques spammers are using.

6. Never give out your corporate email address for anything that isnít work related. Consumer services can be some of the most pernicious spammers around.

7. If youíre having significant problems with spam, talk to your IT department. They may be able to help with an alternative email address or set up rules that only allow emails from designated domains.

8. Donít have email addresses on company websites so they canít be harvested by spambots. Have an online form with a phone number instead.

9. Preventing spam requires a joint international effort, so report it by sending the message plus the full header of the email, to sites such as Spam Cop which can then add the sender to their black lists.

10. When using private email addresses, select an address that is difficult to guess, using a combination of letters and numbers.


More than 900 embedded devices share hard-coded certs, SSH host keys

SEC Consult analyzed firmware images of more than 4000 embedded devices of over 70 vendors and found that, in some cases, there are nearly half a million devices on the web using the same certificate.

Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.

Daily digest

Receive a daily digest of the latest security news.

Mon, Nov 30th