Junking The Junk: Staying Ahead Of Spam Attacks
by Edwin Hageman - Managing Director BT Global MSSP - Monday, 26 December 2005.
4. Never reply to unsolicited mail, even if it is to unsubscribe. This validates your address and, as such, makes it much more valuable to companies that sell email lists. This also applies to the remove link that many spammers include. Ideally you should not even open mail that is unsolicited.

5. Help your anti-spam tool learn what is and isnít junk. Identify false positives and inform it when it misses a piece of spam. This helps build up accurate black and white lists, and identifies the latest techniques spammers are using.

6. Never give out your corporate email address for anything that isnít work related. Consumer services can be some of the most pernicious spammers around.

7. If youíre having significant problems with spam, talk to your IT department. They may be able to help with an alternative email address or set up rules that only allow emails from designated domains.

8. Donít have email addresses on company websites so they canít be harvested by spambots. Have an online form with a phone number instead.

9. Preventing spam requires a joint international effort, so report it by sending the message plus the full header of the email, to sites such as Spam Cop which can then add the sender to their black lists.

10. When using private email addresses, select an address that is difficult to guess, using a combination of letters and numbers.


Chrome extension thwarts user profiling based on typing behavior

Infosec consultant Paul Moore came up with a working solution to thwart a type of behavioral profiling. The result is a Chrome extension called Keyboard Privacy, which prevents profiling of users by the way they type by randomizing the rate at which characters reach the DOM.

Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.

Daily digest

Receive a daily digest of the latest security news.

Wed, Jul 29th