Extremely aggressive spam blasts against single targets are on the rise, causing denial-of-service effects on smaller businesses, according to MessageLabs.
In one attack monitored by the UK security company, a spam run of more than 10,000 messages struck a single domain over an 11-hour period, accounting for 75 percent of all incoming messages.
"The purpose of a spam spike is to defeat appliance-based anti-spam systems that rely heavily on signatures, rather like desktop antivirus software," MessageLabs said in a new report.
MessageLabs, of course, offers spam filtering as a managed service, which competes with appliances.
"For smaller businesses, these can cause problems for the company's email servers. A spam spike can have an effect similar to that of a DDoS (distributed denial of service) attack," MessageLabs said.
May's data also indicated a continuing trend in targeted attacks that aim one piece of spam at a single recipient. The number of single victim attacks last month was down: 595 total emails, compared with March's 716. However, the percentage of those one-off attacks that relied on malformed Microsoft Office documents jumped to 95 percent from 80 percent two months before. Sixty-four percent of the attacks used a malicious Word document, while 17 percent exploited Excel and 14 percent offered up a bogus or infected PowerPoint file.
Microsoft patched its Office suite several times in 2006 to protect users against these types of attacks, and it released more fixes in January, February and May this year. But in a tacit acknowledgement that patches aren't enough, Microsoft last month promoted new last-ditch defences against Word-, Excel- and PowerPoint-based attacks. The new tactics include a free tool that converts Office 2003 documents to the more secure Office 2007 formats, and the ability to block specific Office document formats when an attack is anticipated.
MessageLabs culled other data from May's results, including a claim that phishing attacks accounted for 79 percent of all malicious email intercepted last month. In one instance, the company found that a single and relatively small botnet of just 500 compromised systems was responsible for churning out nearly a quarter-million messages aimed at a single target and was also guilty of sending email infected with 55 different strains of nearly 10,000 viruses.
Worldwide, 72.7 percent of all email was tagged as spam by MessageLabs during May. That figure is below the six-month average of 75.3 percent and far lower than the highest-ever figure of 94.5 percent, recorded in July 2004.