Blue Security waves white flag
The antispam firm is shutting down operations after crippling spam attacks
Computerworld - Antispam company Blue Security Inc. yesterday said that it is ceasing operations after a crippling series of attacks launched against its services earlier this month by a Russian spammer named PharmaMaster.
The episode serves as an alarming reminder of the challenges involved in dealing with spammers and the resources they have at their disposal to deter those trying to stop them, analysts said.
In a statement yesterday, Blue Security, whose U.S. headquarters are in Meno Park, Calif., said it can no longer "take the responsibility for an ever-escalating cyberwar through our continued operations.
"As we cannot build the Blue Security business on the foundation we originally envisioned, we are discontinuing all of our antispam activities on your behalf and are exploring other, non-spam-related avenues for our technological developments," the company said.
The decision comes only days after Blue Security restarted operations following a massive and sustained denial-of-service (DoS) attack launched against it by PharmaMaster earlier this month.
Blue Security operated a fairly controversial antispam service designed to deter junk-mailers by spamming them back. Blue Security's Do Not Intrude program allowed individuals to register their e-mail addresses with the company and essentially flood spammers who sent them e-mail with automated opt-out requests.
Since the free service was launched on a trial basis last summer, Blue Security claimed to have signed up more than 500,000 subscribers -- including corporate customers -- and had gotten six out of the top 10 spammers to abide with their opt-out lists.
But the speed at which the company folded following the DoS attacks suggests that it was ill-prepared to deal with the consequences of attacking spammers directly, said Todd Underwood, chief operations and security officer at Renesys Corp., a Manchester, N.H.-based Internet monitoring company.
"Spammers have a history of launching massive attacks against those who try to stop them," Underwood said. While others have taken precautions against such attacks by building more redundancy into their networks, Blue Security appears to have been "woefully underprepared for the things that happen when you attack spammers," he said.
More importantly, the incident is an alarming reminder of how the vast botnets available to spammers for sending bulk e-mail can be easily used to launch devastating attacks, said John Levine, chair of the Internet Research Task Force's Anti-Spam Research Group.
The attacks against Blue Security caused serious disruptions for five service providers that were hosting the company's servers. It also interrupted service at Toronto-based Tucows Inc., a major provider of core domain-name system services. Thousands of blogs being hosted by San Francisco-based Six Apart Ltd. were also knocked off-line after PharmaMaster launched a DoS attack against a server hosting a Blue Security blog. In an interview following the attacks, company CEO Eran Reshef said the attacks appear to have been carried out with the help of someone within a large Internet service provider.
The fact that this sort of disruption can be caused because of a "grudge match" between two people is scary, Levine said. "It points to a fundamental security weakness of the Internet," Levine said. With spammers operating at will from a number of countries, the issue of stopping them is something that people are going to have to think about from both a legal and technical standpoint, he said.
Read more about Cybercrime and Hacking in Computerworld's Cybercrime and Hacking Topic Center.
- 15 Non-Certified IT Skills Growing in Demand
- How 19 Tech Titans Target Healthcare
- Twitter Suffering From Growing Pains (and Facebook Comparisons)
- Agile Comes to Data Integration
- Slideshow: 7 security mistakes people make with their mobile device
- iOS vs. Android: Which is more secure?
- 11 sure signs you've been hacked
- Who's Spying on You? You're aware of the threats of malware to your business but what about the ever-changing ground rules? Cybercriminals today are launching attacks against...
- HP HAVEn: See the big picture in Big Data HP HAVEn is the industry's first comprehensive, scalable, open, and secure platform for Big Data. Enterprises are drowning in a sea of data...
- What Datapipe customers need to know about the new PCI DSS 3.0 compliance standard This handy quick reference outlines what PCI DSS 3.0 is, who needs to be compliant and how Alert Logic solutions address the new...
- The 12 PCI DSS 3.0 requirements addressed by Peer 1 Hosting This handy quick reference outlines the 12 PCI DSS 3.0 requirements, who needs to be compliant and how Alert Logic solutions address the...
- Meg Whitman presents Unlocking IT with Big Data During this Web Event you will hear Meg Whitman, President and CEO, HP discuss HAVEn - the #1 Big Data platform, as well...
- The New Way to Work Knowledge Vault This Knowledge Vault focuses on how, in today's increasingly virtual world, it's more important than ever to engage deeply with employees, suppliers, partners,... All Cybercrime and Hacking White Papers | Webcasts