Case Stuay #2 Community Policing on the Internet: Spamhaus Targets Worldwide Spammers Silently protecting the inboxes...
Fantastic news! We've Found the answer you've been seeking!
Question:
Transcribed Image Text:
Case Stuay #2 Community Policing on the Internet: Spamhaus Targets Worldwide Spammers Silently protecting the inboxes of billions of people worldwide is an international nonprofit organization called Spamhaus, which describes its mission as: Tracking the interneť's spam operations and related threats. Providing dependable real-time intelligence about threats to the internet's major networks. • Working with law enforcement agencies to identify and pursue spam and malware sources worldwide. With headquarters in the United Kingdom and Switzerland, Spamhaus maintains a "block list" containing the IP addresses believed to originate spam. Many governments, corporations, universities, and other organizations check the list before delivering mail, blocking any messages whose senders match an entry on it. Identifying and Fighting Spammers How do senders wind up labeled as spammers and placed on the block list? Spamhaus defines spam as any mail that is both unsolicited and sent in bulk. opanutausuemes spar as arty nar urat IS vourunsoICIteu anu senrmrvuIK. Mail that meets this definition may not be illegal in many places, including the United States, so Spamhaus is the target of lawsuits claiming damages for lost business. For example, a Chicago email marketing firm called e360 Insight sued Spamhaus for more than $11 million in damages. A US court eventually awarded e360 $27,000, but Spamhaus refused to pay even that amount, insisting that e360 was a spammer. The US Court of Appeals reducéd the amount to $3, overturning the judgments of previous courts. Although e360 is now out of business, its main employee complained bitterly about this kind of community policing that works outside traditional law enforcement. "Spamhaus.org is a fanatical, vigilante organization that operates in the United States with blatant disregard for US law," he said. Although the cause is noble, the stakes are extremely high, so the work itself can be both dangerous and secretive. Larry, Spamhaus's chief technical officer, who prefers not to reveal his last name, says, "We get threats every day. In the US, it is people bringing lawsuits against us. And then there are organized criminals in Russia and Ukraine, who use different methods." Police have advised Steve Linford, head of Spamhaus, to be suspicious of any unexpected packages delivered to his home. In March 2013, a massive distributed denial of service (DD0S) attack, one of the largest in internet history, hit the Spamhaus website. The attackers used "DNS reflection," in which the internet's domain name servers, which resolve URLS to their corresponding IP addresses, are spoofed into sending huge Case Study # 2 the largest in internet history, hit the Spamhaus website. The attackers used "DNS reflection," in which the internet's domain name servers, which resolve URLS to their corresponding IP addresses, are spoofed into sending huge traffic streams to one website. Spamhaus crashed, and the enormous attack left many wondering if the whole internet might be in danger. Sven Kamphuis quickly took credit for the attack, accusing Spamhaus of trying to "control the internet through underhanded extortion tactics." Kamphuis heads a company named CyberBunker; this company offers a hosting service that does not keep any traffic logs, so there are no records for police to SO confiscate. Spammers and copyright violators flock to hosts like this, and Spamhaus had blocked several of CyberBunker's clients, some of whom volunteered to launch the DD0S attack. Fighting spam becomes more challenging as the internet grows and many new top-level domains (TLDS) are approved. While the registrars for .com, .net, and other major TLDS do a good job of monitoring for spam, some TLDS are rife with it. Figure 10.27 shows the worst offenders. Figure 10.27 Some top-level domains with the worst reputations for spam operations, identified by Spamhaus, www.spamhaus.org/statistics/tlds/, accessed May 4, 2019. Case Study #2 Pros and Cons of Community Policing Industry analysts know that community policing is not perfect and that block lists can contain false positives that harm legitimate businesses. It is time- consuming and expensive for companies to work through the process to get cleared. But as one analyst put it, "These [spammers] aren't just a nuisance. They're a cancer on society. And Linford has taken it upon himself to do something about them. That these cops are self-appointed is troubling. But marketers would do well to understand that without Spamhaus, people's inboxes would be unusable." Discussion Questions 10-26. How do the interests of computer users differ from the interests of spammers? 10-27. Do you agree with the Spamhaus methodology to reduce spam? 10-28. What other approaches could be taken to reduce spam? 10-29. What are the relevant legal issues in this case? Sources: Claburn, T. (April 16, 2019). The curious case of Spamhaus, a port scanning scandal, and an apparent U-turn. The Register, www.theregister.co.uk/2019/04/16/spamhaus_port_scans/, accessed June 7, 2019. Case Stuay #2 Community Policing on the Internet: Spamhaus Targets Worldwide Spammers Silently protecting the inboxes of billions of people worldwide is an international nonprofit organization called Spamhaus, which describes its mission as: Tracking the interneť's spam operations and related threats. Providing dependable real-time intelligence about threats to the internet's major networks. • Working with law enforcement agencies to identify and pursue spam and malware sources worldwide. With headquarters in the United Kingdom and Switzerland, Spamhaus maintains a "block list" containing the IP addresses believed to originate spam. Many governments, corporations, universities, and other organizations check the list before delivering mail, blocking any messages whose senders match an entry on it. Identifying and Fighting Spammers How do senders wind up labeled as spammers and placed on the block list? Spamhaus defines spam as any mail that is both unsolicited and sent in bulk. opanutausuemes spar as arty nar urat IS vourunsoICIteu anu senrmrvuIK. Mail that meets this definition may not be illegal in many places, including the United States, so Spamhaus is the target of lawsuits claiming damages for lost business. For example, a Chicago email marketing firm called e360 Insight sued Spamhaus for more than $11 million in damages. A US court eventually awarded e360 $27,000, but Spamhaus refused to pay even that amount, insisting that e360 was a spammer. The US Court of Appeals reducéd the amount to $3, overturning the judgments of previous courts. Although e360 is now out of business, its main employee complained bitterly about this kind of community policing that works outside traditional law enforcement. "Spamhaus.org is a fanatical, vigilante organization that operates in the United States with blatant disregard for US law," he said. Although the cause is noble, the stakes are extremely high, so the work itself can be both dangerous and secretive. Larry, Spamhaus's chief technical officer, who prefers not to reveal his last name, says, "We get threats every day. In the US, it is people bringing lawsuits against us. And then there are organized criminals in Russia and Ukraine, who use different methods." Police have advised Steve Linford, head of Spamhaus, to be suspicious of any unexpected packages delivered to his home. In March 2013, a massive distributed denial of service (DD0S) attack, one of the largest in internet history, hit the Spamhaus website. The attackers used "DNS reflection," in which the internet's domain name servers, which resolve URLS to their corresponding IP addresses, are spoofed into sending huge Case Study # 2 the largest in internet history, hit the Spamhaus website. The attackers used "DNS reflection," in which the internet's domain name servers, which resolve URLS to their corresponding IP addresses, are spoofed into sending huge traffic streams to one website. Spamhaus crashed, and the enormous attack left many wondering if the whole internet might be in danger. Sven Kamphuis quickly took credit for the attack, accusing Spamhaus of trying to "control the internet through underhanded extortion tactics." Kamphuis heads a company named CyberBunker; this company offers a hosting service that does not keep any traffic logs, so there are no records for police to SO confiscate. Spammers and copyright violators flock to hosts like this, and Spamhaus had blocked several of CyberBunker's clients, some of whom volunteered to launch the DD0S attack. Fighting spam becomes more challenging as the internet grows and many new top-level domains (TLDS) are approved. While the registrars for .com, .net, and other major TLDS do a good job of monitoring for spam, some TLDS are rife with it. Figure 10.27 shows the worst offenders. Figure 10.27 Some top-level domains with the worst reputations for spam operations, identified by Spamhaus, www.spamhaus.org/statistics/tlds/, accessed May 4, 2019. Case Study #2 Pros and Cons of Community Policing Industry analysts know that community policing is not perfect and that block lists can contain false positives that harm legitimate businesses. It is time- consuming and expensive for companies to work through the process to get cleared. But as one analyst put it, "These [spammers] aren't just a nuisance. They're a cancer on society. And Linford has taken it upon himself to do something about them. That these cops are self-appointed is troubling. But marketers would do well to understand that without Spamhaus, people's inboxes would be unusable." Discussion Questions 10-26. How do the interests of computer users differ from the interests of spammers? 10-27. Do you agree with the Spamhaus methodology to reduce spam? 10-28. What other approaches could be taken to reduce spam? 10-29. What are the relevant legal issues in this case? Sources: Claburn, T. (April 16, 2019). The curious case of Spamhaus, a port scanning scandal, and an apparent U-turn. The Register, www.theregister.co.uk/2019/04/16/spamhaus_port_scans/, accessed June 7, 2019. Case Stuay #2 Community Policing on the Internet: Spamhaus Targets Worldwide Spammers Silently protecting the inboxes of billions of people worldwide is an international nonprofit organization called Spamhaus, which describes its mission as: Tracking the interneť's spam operations and related threats. Providing dependable real-time intelligence about threats to the internet's major networks. • Working with law enforcement agencies to identify and pursue spam and malware sources worldwide. With headquarters in the United Kingdom and Switzerland, Spamhaus maintains a "block list" containing the IP addresses believed to originate spam. Many governments, corporations, universities, and other organizations check the list before delivering mail, blocking any messages whose senders match an entry on it. Identifying and Fighting Spammers How do senders wind up labeled as spammers and placed on the block list? Spamhaus defines spam as any mail that is both unsolicited and sent in bulk. opanutausuemes spar as arty nar urat IS vourunsoICIteu anu senrmrvuIK. Mail that meets this definition may not be illegal in many places, including the United States, so Spamhaus is the target of lawsuits claiming damages for lost business. For example, a Chicago email marketing firm called e360 Insight sued Spamhaus for more than $11 million in damages. A US court eventually awarded e360 $27,000, but Spamhaus refused to pay even that amount, insisting that e360 was a spammer. The US Court of Appeals reducéd the amount to $3, overturning the judgments of previous courts. Although e360 is now out of business, its main employee complained bitterly about this kind of community policing that works outside traditional law enforcement. "Spamhaus.org is a fanatical, vigilante organization that operates in the United States with blatant disregard for US law," he said. Although the cause is noble, the stakes are extremely high, so the work itself can be both dangerous and secretive. Larry, Spamhaus's chief technical officer, who prefers not to reveal his last name, says, "We get threats every day. In the US, it is people bringing lawsuits against us. And then there are organized criminals in Russia and Ukraine, who use different methods." Police have advised Steve Linford, head of Spamhaus, to be suspicious of any unexpected packages delivered to his home. In March 2013, a massive distributed denial of service (DD0S) attack, one of the largest in internet history, hit the Spamhaus website. The attackers used "DNS reflection," in which the internet's domain name servers, which resolve URLS to their corresponding IP addresses, are spoofed into sending huge Case Study # 2 the largest in internet history, hit the Spamhaus website. The attackers used "DNS reflection," in which the internet's domain name servers, which resolve URLS to their corresponding IP addresses, are spoofed into sending huge traffic streams to one website. Spamhaus crashed, and the enormous attack left many wondering if the whole internet might be in danger. Sven Kamphuis quickly took credit for the attack, accusing Spamhaus of trying to "control the internet through underhanded extortion tactics." Kamphuis heads a company named CyberBunker; this company offers a hosting service that does not keep any traffic logs, so there are no records for police to SO confiscate. Spammers and copyright violators flock to hosts like this, and Spamhaus had blocked several of CyberBunker's clients, some of whom volunteered to launch the DD0S attack. Fighting spam becomes more challenging as the internet grows and many new top-level domains (TLDS) are approved. While the registrars for .com, .net, and other major TLDS do a good job of monitoring for spam, some TLDS are rife with it. Figure 10.27 shows the worst offenders. Figure 10.27 Some top-level domains with the worst reputations for spam operations, identified by Spamhaus, www.spamhaus.org/statistics/tlds/, accessed May 4, 2019. Case Study #2 Pros and Cons of Community Policing Industry analysts know that community policing is not perfect and that block lists can contain false positives that harm legitimate businesses. It is time- consuming and expensive for companies to work through the process to get cleared. But as one analyst put it, "These [spammers] aren't just a nuisance. They're a cancer on society. And Linford has taken it upon himself to do something about them. That these cops are self-appointed is troubling. But marketers would do well to understand that without Spamhaus, people's inboxes would be unusable." Discussion Questions 10-26. How do the interests of computer users differ from the interests of spammers? 10-27. Do you agree with the Spamhaus methodology to reduce spam? 10-28. What other approaches could be taken to reduce spam? 10-29. What are the relevant legal issues in this case? Sources: Claburn, T. (April 16, 2019). The curious case of Spamhaus, a port scanning scandal, and an apparent U-turn. The Register, www.theregister.co.uk/2019/04/16/spamhaus_port_scans/, accessed June 7, 2019. Case Stuay #2 Community Policing on the Internet: Spamhaus Targets Worldwide Spammers Silently protecting the inboxes of billions of people worldwide is an international nonprofit organization called Spamhaus, which describes its mission as: Tracking the interneť's spam operations and related threats. Providing dependable real-time intelligence about threats to the internet's major networks. • Working with law enforcement agencies to identify and pursue spam and malware sources worldwide. With headquarters in the United Kingdom and Switzerland, Spamhaus maintains a "block list" containing the IP addresses believed to originate spam. Many governments, corporations, universities, and other organizations check the list before delivering mail, blocking any messages whose senders match an entry on it. Identifying and Fighting Spammers How do senders wind up labeled as spammers and placed on the block list? Spamhaus defines spam as any mail that is both unsolicited and sent in bulk. opanutausuemes spar as arty nar urat IS vourunsoICIteu anu senrmrvuIK. Mail that meets this definition may not be illegal in many places, including the United States, so Spamhaus is the target of lawsuits claiming damages for lost business. For example, a Chicago email marketing firm called e360 Insight sued Spamhaus for more than $11 million in damages. A US court eventually awarded e360 $27,000, but Spamhaus refused to pay even that amount, insisting that e360 was a spammer. The US Court of Appeals reducéd the amount to $3, overturning the judgments of previous courts. Although e360 is now out of business, its main employee complained bitterly about this kind of community policing that works outside traditional law enforcement. "Spamhaus.org is a fanatical, vigilante organization that operates in the United States with blatant disregard for US law," he said. Although the cause is noble, the stakes are extremely high, so the work itself can be both dangerous and secretive. Larry, Spamhaus's chief technical officer, who prefers not to reveal his last name, says, "We get threats every day. In the US, it is people bringing lawsuits against us. And then there are organized criminals in Russia and Ukraine, who use different methods." Police have advised Steve Linford, head of Spamhaus, to be suspicious of any unexpected packages delivered to his home. In March 2013, a massive distributed denial of service (DD0S) attack, one of the largest in internet history, hit the Spamhaus website. The attackers used "DNS reflection," in which the internet's domain name servers, which resolve URLS to their corresponding IP addresses, are spoofed into sending huge Case Study # 2 the largest in internet history, hit the Spamhaus website. The attackers used "DNS reflection," in which the internet's domain name servers, which resolve URLS to their corresponding IP addresses, are spoofed into sending huge traffic streams to one website. Spamhaus crashed, and the enormous attack left many wondering if the whole internet might be in danger. Sven Kamphuis quickly took credit for the attack, accusing Spamhaus of trying to "control the internet through underhanded extortion tactics." Kamphuis heads a company named CyberBunker; this company offers a hosting service that does not keep any traffic logs, so there are no records for police to SO confiscate. Spammers and copyright violators flock to hosts like this, and Spamhaus had blocked several of CyberBunker's clients, some of whom volunteered to launch the DD0S attack. Fighting spam becomes more challenging as the internet grows and many new top-level domains (TLDS) are approved. While the registrars for .com, .net, and other major TLDS do a good job of monitoring for spam, some TLDS are rife with it. Figure 10.27 shows the worst offenders. Figure 10.27 Some top-level domains with the worst reputations for spam operations, identified by Spamhaus, www.spamhaus.org/statistics/tlds/, accessed May 4, 2019. Case Study #2 Pros and Cons of Community Policing Industry analysts know that community policing is not perfect and that block lists can contain false positives that harm legitimate businesses. It is time- consuming and expensive for companies to work through the process to get cleared. But as one analyst put it, "These [spammers] aren't just a nuisance. They're a cancer on society. And Linford has taken it upon himself to do something about them. That these cops are self-appointed is troubling. But marketers would do well to understand that without Spamhaus, people's inboxes would be unusable." Discussion Questions 10-26. How do the interests of computer users differ from the interests of spammers? 10-27. Do you agree with the Spamhaus methodology to reduce spam? 10-28. What other approaches could be taken to reduce spam? 10-29. What are the relevant legal issues in this case? Sources: Claburn, T. (April 16, 2019). The curious case of Spamhaus, a port scanning scandal, and an apparent U-turn. The Register, www.theregister.co.uk/2019/04/16/spamhaus_port_scans/, accessed June 7, 2019. Case Stuay #2 Community Policing on the Internet: Spamhaus Targets Worldwide Spammers Silently protecting the inboxes of billions of people worldwide is an international nonprofit organization called Spamhaus, which describes its mission as: Tracking the interneť's spam operations and related threats. Providing dependable real-time intelligence about threats to the internet's major networks. • Working with law enforcement agencies to identify and pursue spam and malware sources worldwide. With headquarters in the United Kingdom and Switzerland, Spamhaus maintains a "block list" containing the IP addresses believed to originate spam. Many governments, corporations, universities, and other organizations check the list before delivering mail, blocking any messages whose senders match an entry on it. Identifying and Fighting Spammers How do senders wind up labeled as spammers and placed on the block list? Spamhaus defines spam as any mail that is both unsolicited and sent in bulk. opanutausuemes spar as arty nar urat IS vourunsoICIteu anu senrmrvuIK. Mail that meets this definition may not be illegal in many places, including the United States, so Spamhaus is the target of lawsuits claiming damages for lost business. For example, a Chicago email marketing firm called e360 Insight sued Spamhaus for more than $11 million in damages. A US court eventually awarded e360 $27,000, but Spamhaus refused to pay even that amount, insisting that e360 was a spammer. The US Court of Appeals reducéd the amount to $3, overturning the judgments of previous courts. Although e360 is now out of business, its main employee complained bitterly about this kind of community policing that works outside traditional law enforcement. "Spamhaus.org is a fanatical, vigilante organization that operates in the United States with blatant disregard for US law," he said. Although the cause is noble, the stakes are extremely high, so the work itself can be both dangerous and secretive. Larry, Spamhaus's chief technical officer, who prefers not to reveal his last name, says, "We get threats every day. In the US, it is people bringing lawsuits against us. And then there are organized criminals in Russia and Ukraine, who use different methods." Police have advised Steve Linford, head of Spamhaus, to be suspicious of any unexpected packages delivered to his home. In March 2013, a massive distributed denial of service (DD0S) attack, one of the largest in internet history, hit the Spamhaus website. The attackers used "DNS reflection," in which the internet's domain name servers, which resolve URLS to their corresponding IP addresses, are spoofed into sending huge Case Study # 2 the largest in internet history, hit the Spamhaus website. The attackers used "DNS reflection," in which the internet's domain name servers, which resolve URLS to their corresponding IP addresses, are spoofed into sending huge traffic streams to one website. Spamhaus crashed, and the enormous attack left many wondering if the whole internet might be in danger. Sven Kamphuis quickly took credit for the attack, accusing Spamhaus of trying to "control the internet through underhanded extortion tactics." Kamphuis heads a company named CyberBunker; this company offers a hosting service that does not keep any traffic logs, so there are no records for police to SO confiscate. Spammers and copyright violators flock to hosts like this, and Spamhaus had blocked several of CyberBunker's clients, some of whom volunteered to launch the DD0S attack. Fighting spam becomes more challenging as the internet grows and many new top-level domains (TLDS) are approved. While the registrars for .com, .net, and other major TLDS do a good job of monitoring for spam, some TLDS are rife with it. Figure 10.27 shows the worst offenders. Figure 10.27 Some top-level domains with the worst reputations for spam operations, identified by Spamhaus, www.spamhaus.org/statistics/tlds/, accessed May 4, 2019. Case Study #2 Pros and Cons of Community Policing Industry analysts know that community policing is not perfect and that block lists can contain false positives that harm legitimate businesses. It is time- consuming and expensive for companies to work through the process to get cleared. But as one analyst put it, "These [spammers] aren't just a nuisance. They're a cancer on society. And Linford has taken it upon himself to do something about them. That these cops are self-appointed is troubling. But marketers would do well to understand that without Spamhaus, people's inboxes would be unusable." Discussion Questions 10-26. How do the interests of computer users differ from the interests of spammers? 10-27. Do you agree with the Spamhaus methodology to reduce spam? 10-28. What other approaches could be taken to reduce spam? 10-29. What are the relevant legal issues in this case? Sources: Claburn, T. (April 16, 2019). The curious case of Spamhaus, a port scanning scandal, and an apparent U-turn. The Register, www.theregister.co.uk/2019/04/16/spamhaus_port_scans/, accessed June 7, 2019. Case Stuay #2 Community Policing on the Internet: Spamhaus Targets Worldwide Spammers Silently protecting the inboxes of billions of people worldwide is an international nonprofit organization called Spamhaus, which describes its mission as: Tracking the interneť's spam operations and related threats. Providing dependable real-time intelligence about threats to the internet's major networks. • Working with law enforcement agencies to identify and pursue spam and malware sources worldwide. With headquarters in the United Kingdom and Switzerland, Spamhaus maintains a "block list" containing the IP addresses believed to originate spam. Many governments, corporations, universities, and other organizations check the list before delivering mail, blocking any messages whose senders match an entry on it. Identifying and Fighting Spammers How do senders wind up labeled as spammers and placed on the block list? Spamhaus defines spam as any mail that is both unsolicited and sent in bulk. opanutausuemes spar as arty nar urat IS vourunsoICIteu anu senrmrvuIK. Mail that meets this definition may not be illegal in many places, including the United States, so Spamhaus is the target of lawsuits claiming damages for lost business. For example, a Chicago email marketing firm called e360 Insight sued Spamhaus for more than $11 million in damages. A US court eventually awarded e360 $27,000, but Spamhaus refused to pay even that amount, insisting that e360 was a spammer. The US Court of Appeals reducéd the amount to $3, overturning the judgments of previous courts. Although e360 is now out of business, its main employee complained bitterly about this kind of community policing that works outside traditional law enforcement. "Spamhaus.org is a fanatical, vigilante organization that operates in the United States with blatant disregard for US law," he said. Although the cause is noble, the stakes are extremely high, so the work itself can be both dangerous and secretive. Larry, Spamhaus's chief technical officer, who prefers not to reveal his last name, says, "We get threats every day. In the US, it is people bringing lawsuits against us. And then there are organized criminals in Russia and Ukraine, who use different methods." Police have advised Steve Linford, head of Spamhaus, to be suspicious of any unexpected packages delivered to his home. In March 2013, a massive distributed denial of service (DD0S) attack, one of the largest in internet history, hit the Spamhaus website. The attackers used "DNS reflection," in which the internet's domain name servers, which resolve URLS to their corresponding IP addresses, are spoofed into sending huge Case Study # 2 the largest in internet history, hit the Spamhaus website. The attackers used "DNS reflection," in which the internet's domain name servers, which resolve URLS to their corresponding IP addresses, are spoofed into sending huge traffic streams to one website. Spamhaus crashed, and the enormous attack left many wondering if the whole internet might be in danger. Sven Kamphuis quickly took credit for the attack, accusing Spamhaus of trying to "control the internet through underhanded extortion tactics." Kamphuis heads a company named CyberBunker; this company offers a hosting service that does not keep any traffic logs, so there are no records for police to SO confiscate. Spammers and copyright violators flock to hosts like this, and Spamhaus had blocked several of CyberBunker's clients, some of whom volunteered to launch the DD0S attack. Fighting spam becomes more challenging as the internet grows and many new top-level domains (TLDS) are approved. While the registrars for .com, .net, and other major TLDS do a good job of monitoring for spam, some TLDS are rife with it. Figure 10.27 shows the worst offenders. Figure 10.27 Some top-level domains with the worst reputations for spam operations, identified by Spamhaus, www.spamhaus.org/statistics/tlds/, accessed May 4, 2019. Case Study #2 Pros and Cons of Community Policing Industry analysts know that community policing is not perfect and that block lists can contain false positives that harm legitimate businesses. It is time- consuming and expensive for companies to work through the process to get cleared. But as one analyst put it, "These [spammers] aren't just a nuisance. They're a cancer on society. And Linford has taken it upon himself to do something about them. That these cops are self-appointed is troubling. But marketers would do well to understand that without Spamhaus, people's inboxes would be unusable." Discussion Questions 10-26. How do the interests of computer users differ from the interests of spammers? 10-27. Do you agree with the Spamhaus methodology to reduce spam? 10-28. What other approaches could be taken to reduce spam? 10-29. What are the relevant legal issues in this case? Sources: Claburn, T. (April 16, 2019). The curious case of Spamhaus, a port scanning scandal, and an apparent U-turn. The Register, www.theregister.co.uk/2019/04/16/spamhaus_port_scans/, accessed June 7, 2019. Case Stuay #2 Community Policing on the Internet: Spamhaus Targets Worldwide Spammers Silently protecting the inboxes of billions of people worldwide is an international nonprofit organization called Spamhaus, which describes its mission as: Tracking the interneť's spam operations and related threats. Providing dependable real-time intelligence about threats to the internet's major networks. • Working with law enforcement agencies to identify and pursue spam and malware sources worldwide. With headquarters in the United Kingdom and Switzerland, Spamhaus maintains a "block list" containing the IP addresses believed to originate spam. Many governments, corporations, universities, and other organizations check the list before delivering mail, blocking any messages whose senders match an entry on it. Identifying and Fighting Spammers How do senders wind up labeled as spammers and placed on the block list? Spamhaus defines spam as any mail that is both unsolicited and sent in bulk. opanutausuemes spar as arty nar urat IS vourunsoICIteu anu senrmrvuIK. Mail that meets this definition may not be illegal in many places, including the United States, so Spamhaus is the target of lawsuits claiming damages for lost business. For example, a Chicago email marketing firm called e360 Insight sued Spamhaus for more than $11 million in damages. A US court eventually awarded e360 $27,000, but Spamhaus refused to pay even that amount, insisting that e360 was a spammer. The US Court of Appeals reducéd the amount to $3, overturning the judgments of previous courts. Although e360 is now out of business, its main employee complained bitterly about this kind of community policing that works outside traditional law enforcement. "Spamhaus.org is a fanatical, vigilante organization that operates in the United States with blatant disregard for US law," he said. Although the cause is noble, the stakes are extremely high, so the work itself can be both dangerous and secretive. Larry, Spamhaus's chief technical officer, who prefers not to reveal his last name, says, "We get threats every day. In the US, it is people bringing lawsuits against us. And then there are organized criminals in Russia and Ukraine, who use different methods." Police have advised Steve Linford, head of Spamhaus, to be suspicious of any unexpected packages delivered to his home. In March 2013, a massive distributed denial of service (DD0S) attack, one of the largest in internet history, hit the Spamhaus website. The attackers used "DNS reflection," in which the internet's domain name servers, which resolve URLS to their corresponding IP addresses, are spoofed into sending huge Case Study # 2 the largest in internet history, hit the Spamhaus website. The attackers used "DNS reflection," in which the internet's domain name servers, which resolve URLS to their corresponding IP addresses, are spoofed into sending huge traffic streams to one website. Spamhaus crashed, and the enormous attack left many wondering if the whole internet might be in danger. Sven Kamphuis quickly took credit for the attack, accusing Spamhaus of trying to "control the internet through underhanded extortion tactics." Kamphuis heads a company named CyberBunker; this company offers a hosting service that does not keep any traffic logs, so there are no records for police to SO confiscate. Spammers and copyright violators flock to hosts like this, and Spamhaus had blocked several of CyberBunker's clients, some of whom volunteered to launch the DD0S attack. Fighting spam becomes more challenging as the internet grows and many new top-level domains (TLDS) are approved. While the registrars for .com, .net, and other major TLDS do a good job of monitoring for spam, some TLDS are rife with it. Figure 10.27 shows the worst offenders. Figure 10.27 Some top-level domains with the worst reputations for spam operations, identified by Spamhaus, www.spamhaus.org/statistics/tlds/, accessed May 4, 2019. Case Study #2 Pros and Cons of Community Policing Industry analysts know that community policing is not perfect and that block lists can contain false positives that harm legitimate businesses. It is time- consuming and expensive for companies to work through the process to get cleared. But as one analyst put it, "These [spammers] aren't just a nuisance. They're a cancer on society. And Linford has taken it upon himself to do something about them. That these cops are self-appointed is troubling. But marketers would do well to understand that without Spamhaus, people's inboxes would be unusable." Discussion Questions 10-26. How do the interests of computer users differ from the interests of spammers? 10-27. Do you agree with the Spamhaus methodology to reduce spam? 10-28. What other approaches could be taken to reduce spam? 10-29. What are the relevant legal issues in this case? Sources: Claburn, T. (April 16, 2019). The curious case of Spamhaus, a port scanning scandal, and an apparent U-turn. The Register, www.theregister.co.uk/2019/04/16/spamhaus_port_scans/, accessed June 7, 2019. Case Stuay #2 Community Policing on the Internet: Spamhaus Targets Worldwide Spammers Silently protecting the inboxes of billions of people worldwide is an international nonprofit organization called Spamhaus, which describes its mission as: Tracking the interneť's spam operations and related threats. Providing dependable real-time intelligence about threats to the internet's major networks. • Working with law enforcement agencies to identify and pursue spam and malware sources worldwide. With headquarters in the United Kingdom and Switzerland, Spamhaus maintains a "block list" containing the IP addresses believed to originate spam. Many governments, corporations, universities, and other organizations check the list before delivering mail, blocking any messages whose senders match an entry on it. Identifying and Fighting Spammers How do senders wind up labeled as spammers and placed on the block list? Spamhaus defines spam as any mail that is both unsolicited and sent in bulk. opanutausuemes spar as arty nar urat IS vourunsoICIteu anu senrmrvuIK. Mail that meets this definition may not be illegal in many places, including the United States, so Spamhaus is the target of lawsuits claiming damages for lost business. For example, a Chicago email marketing firm called e360 Insight sued Spamhaus for more than $11 million in damages. A US court eventually awarded e360 $27,000, but Spamhaus refused to pay even that amount, insisting that e360 was a spammer. The US Court of Appeals reducéd the amount to $3, overturning the judgments of previous courts. Although e360 is now out of business, its main employee complained bitterly about this kind of community policing that works outside traditional law enforcement. "Spamhaus.org is a fanatical, vigilante organization that operates in the United States with blatant disregard for US law," he said. Although the cause is noble, the stakes are extremely high, so the work itself can be both dangerous and secretive. Larry, Spamhaus's chief technical officer, who prefers not to reveal his last name, says, "We get threats every day. In the US, it is people bringing lawsuits against us. And then there are organized criminals in Russia and Ukraine, who use different methods." Police have advised Steve Linford, head of Spamhaus, to be suspicious of any unexpected packages delivered to his home. In March 2013, a massive distributed denial of service (DD0S) attack, one of the largest in internet history, hit the Spamhaus website. The attackers used "DNS reflection," in which the internet's domain name servers, which resolve URLS to their corresponding IP addresses, are spoofed into sending huge Case Study # 2 the largest in internet history, hit the Spamhaus website. The attackers used "DNS reflection," in which the internet's domain name servers, which resolve URLS to their corresponding IP addresses, are spoofed into sending huge traffic streams to one website. Spamhaus crashed, and the enormous attack left many wondering if the whole internet might be in danger. Sven Kamphuis quickly took credit for the attack, accusing Spamhaus of trying to "control the internet through underhanded extortion tactics." Kamphuis heads a company named CyberBunker; this company offers a hosting service that does not keep any traffic logs, so there are no records for police to SO confiscate. Spammers and copyright violators flock to hosts like this, and Spamhaus had blocked several of CyberBunker's clients, some of whom volunteered to launch the DD0S attack. Fighting spam becomes more challenging as the internet grows and many new top-level domains (TLDS) are approved. While the registrars for .com, .net, and other major TLDS do a good job of monitoring for spam, some TLDS are rife with it. Figure 10.27 shows the worst offenders. Figure 10.27 Some top-level domains with the worst reputations for spam operations, identified by Spamhaus, www.spamhaus.org/statistics/tlds/, accessed May 4, 2019. Case Study #2 Pros and Cons of Community Policing Industry analysts know that community policing is not perfect and that block lists can contain false positives that harm legitimate businesses. It is time- consuming and expensive for companies to work through the process to get cleared. But as one analyst put it, "These [spammers] aren't just a nuisance. They're a cancer on society. And Linford has taken it upon himself to do something about them. That these cops are self-appointed is troubling. But marketers would do well to understand that without Spamhaus, people's inboxes would be unusable." Discussion Questions 10-26. How do the interests of computer users differ from the interests of spammers? 10-27. Do you agree with the Spamhaus methodology to reduce spam? 10-28. What other approaches could be taken to reduce spam? 10-29. What are the relevant legal issues in this case? Sources: Claburn, T. (April 16, 2019). The curious case of Spamhaus, a port scanning scandal, and an apparent U-turn. The Register, www.theregister.co.uk/2019/04/16/spamhaus_port_scans/, accessed June 7, 2019.
Expert Answer:
Answer rating: 100% (QA)
1026 The interest of computer users are different from the interest of spammers because computer user is a wide range which includes all people at lar... View the full answer
Related Book For
College Algebra Graphs and Models
ISBN: 978-0321845405
5th edition
Authors: Marvin L. Bittinger, Judith A. Beecher, David J. Ellenbogen, Judith A. Penna
Posted Date:
Students also viewed these marketing questions
-
Variable Constraint 31 X2 X3 X1 X2 Variable 128 OBJECTIVE COEFFICIENT RANGES Lover Lixit 1 2 3 RIGHT HAND SIDE RANGES Constraint Value Slack Surplus 0.000 0.000 23 333 13.333 10 000 0.000 30.000 No...
-
Write one page or more response essay by addressing these following questions: 1.What is Bower's argument for why we should demand compassionate policing? 2. What does he insist is our right when...
-
On 1 July 2013 Tony Ltd acquired all of the share capital (cum div)of Claire Limited for a consideration of $600,000 cash and a brand with a fair value of $50,000. At the date of acquisition Claire's...
-
The system shown consists of 3 cables. For example; cable C12 joins points 1 and 2. The coordinates of point 1 are (6.4, 0, 0) m, those of point 2 are (0, 9.5, -6.1) m, and those of point 3 are (0,...
-
Nickel sulfate, NiSO4, reacts with sodium phosphate, Na3PO4, to give a pale yellow-green precipitate of nickel phosphate, Ni3(PO4)2, and a solution of sodium sulfate, Na2SO4. 3NiSO4(aq) + 2Na3PO4(aq)...
-
What are variable returns?
-
Give three reasons why the ICP accelerometer is the chosen transducer for vibration analysis.
-
Recognition of Profit and Balance Sheet Presentation, Percentage-of-Completion On February 1, 2010, Hewitt Construction Company obtained a contract to build an athletic stadium. The stadium was to be...
-
Consider a convertible bond as follows: par value = $ 1 , 0 0 0 ; coupon rate = 9 . 5 % market price of convertible bond = $ 1 , 0 0 0 conversion ratio = 3 7 . 3 8 3 estimated straight value of...
-
Quantify the value that Carter brings to Hope. The purpose of your valuation is to educate the team on figures that will be helpful in developing a bidding strategy. There is a con- sensus that Hope...
-
You purchased a 10-year coupon bond (face value = $1000) four and a half years ago and now you have decided to sell it so that you can invest in a different security. If the bond pays a 5% annual...
-
Your friend Jane Thomson is about to prepare the 31 January balance sheet for her new business, Tasty Bites cupcake shop. This is Tasty Bites' first month of operation, and Jane is also going to...
-
What are adjusting entries? Why are they necessary?
-
What is journalising? Briefly describe the journalising process.
-
Why do external users need financial accounting information about a business? How can financial statements help these external users?
-
What is posting? Briefly describe the posting process. Where are entries posted to?
-
Wayfair produces four types of frames. Each type requires a certain amount of skilled labor, metal, and glass, as shown in the table below. The unit selling price of each type is also shown in the...
-
Without solving, determine the character of the solutions of each equation in the complex number system. 3x 2 3x + 4 = 0
-
Is it possible for the graph of a polynomial function to have no y-intercept? no x-intercepts? Explain your answer?
-
Find a linear function g given g(- 1 / 4) = - 6 and g(2) = 3. Then find g(-3).
-
The formula s = 16t2 is used to approximate the distance s, in feet, that an object falls freely from rest in t seconds. Use this formula for Exercise. a. The Taipei 101 Tower, also known as the...
-
Can you list five pitfalls of this pattern, if any?
-
Can you compare this stable pattern with the one that is designed by using a traditional method?
-
What are some of the industrial applications of this pattern? Consider the practical aspects of usage.
Study smarter with the SolutionInn App