Rustock, Lethic and … ???
Oh, sorry, I thought this was a story about Facebook.
Spam volumes have witnessed a dramatic drop of more than 50 per cent since Christmas. Global junk mail volumes have reached their lowest level since the November 2008 shutdown of rogue ISP McColo, Symantec's net filtering business MessageLabs reports. MessageLabs attributes the drop to a production break from the Rustock, …
You beat me to it - I was going to say exactly the same: the obvious reason is that the infected machines are not turned on.
Certainly from our own access stats over the holiday period, there has been a marked drop in traffic to a lot of our commercial sites, so it looks like people have not using the T'interweb as much this Christmas.
This is not correct, most websites see a dramatic reduction of traffic over the festive period, being the worst day, the last day of the year.
Reduction in spam comes from the fact that computers on these botnets are off, people not at work, not using the computer at home so much...therefore the reduction in spam.
Best
"Reduction in spam comes from the fact that computers on these botnets are off, people not at work, not using the computer at home so much...therefore the reduction in spam."
Which seem entirely reasonable, except if it was the main factor it would be affecting all the botnets to some extent, yet from the quoted article, "Other major botnets like Gheg and Cutwail seem to be unchanged at this time."
Which is odd.
Perhaps someone who knows more about their infection profiles can shed some light on whether these ones infect servers rather than client machines, or target countries that haven't been taking much holiday recently?
Had noticed a precipitous drop in my spam logs as well. It's just my personal domain but connections halved on Dec 27 and dropped down to 2 or 3 a day from the 28th to the 3rd. Normally I see around 200 spam connections per day. It has slightly increased from the 4th but even so I only got 17 connections yesterday (but most of these are from a single IP).
I find these numbers odd. If it was due to work computers being switched off I would have noticed a drop from the 24th. And if it was people not using home PCs because they had too many other fun things to do why do my stats for the 25th show it as an average day?
To me it feels more like someone throwing a big giant switch than anything else.
The graph I looked at shows an approximately 70% drop between August and Christmas and then a further (and steeper) 65% drop on Christmas day. So - both statements could be true.
These numbers should be treated with caution - they are estimated from the fairly low detail graphic and my booze addled brain and/or failing eyesight might have intervened.
(http://www.symantec.com/connect/blogs/spam-volume-drop-christmas-day)
I wonder if this is the start of the campaign ...
I have just received an opening, softening up, email saying that the (US) IRS will pay me $5010.11 as a "Home Equity Account holder". And advising me that the NEXT email will be asking for all my personal particulars. In the meantime send my name address and phone number to an email address xxxxx.xxxx@email.bg !
I hope the bit bucket doesn't get too full too quickly, cos the bin men still haven't caught up after their holidays!