I was going to post about SSL certification and setup today, but the security world got ahead of me. Recent versions of openssl – the library used by most applications to implement SSL – released over the past couple of years have a critical bug in them. This bug lets any attacker read any information from the process that’s running SSL, reliably, silently and without leaving...
There are quite a lot of NTP-amplified denial of service attacks going around at the moment targeting tech and ecommerce companies, including some in the email space. What does NTP-amplifed mean? NTP is “Network Time Protocol” – it allows computers to set their clocks based on an accurate source, and keep them accurate. It’s very widely used – OS X and Windows...
If you enter “bfi0” into the Google search box, it’s suggestions are:
bfi0 target
bfi0 com whois
bfi0 spam
target.bfi0.com spam
That says a lot about how people are perceiving the mail Target are sending through Epsilon.
It’s a new year, but an old problem. Email with unloaded images. Sure, you should be including critical content as text, and/or including alt-text as a normal part of your creative design process, but at the bare minimum you should look at what your mail looks like without images. The last thing you want to do is send out email with just one strong call to action – the unsubscribe...
“Sending an email is one of the worst things you can do to a person. You are stealing a little part of their life away. 99.99% of all emails are incredibly annoying and a huge imposition. If your job is to write emails, you should always be fighting to send fewer things and make sure each email you send is so incredible that it’s a rare treat to hear from you.”
Cards Against Humanity at MailChimp
Spamhaus wrote about the return of open relays yesterday. What they’re seeing today matches what I see: there is fairly consistent abuse of open relays to send spam. As spam problems go it’s not as serious as compromised machines or abuse-tolerant ESPs / ISPs/ freemail providers – either in terms of volume or user inbox experience – but it’s definitely part of the...
Eggs, ham, sausage and spam. Some say the Internet is for porn; but you know that in truth the Internet is for spam. As communication technologies got cheaper, the cost of grabbing a megaphone and jamming it up against the aching ear-drums of an advertising-jaded public collapsed: Meanwhile, the content-is-king mantra of the monetization mavens gridlocked the new media in an advertising-supported...
Nothing is impossible to kill. It’s just that sometimes after you kill something you have to keep shooting it until it stops moving.Mira Grant, Feed It’s getting to the time of year when I can get away with some horror movie metaphors. Today, things that are dead. 1. ADSP ADSP was a domain repudiation scheme that should never really have lived, but thankfully it’s now dead. If...
Your entire work life is in your work mail client. All the people you communicate with – co-workers, friends, family, vendors, customers, colleagues. Every email you send. Every email you receive. Any files you attach or receive. If someone can compromise your mail client, they can see all that. They can save copies of all your emails, data-mine them and use them for whatever purpose they...
We have a role address we use to receive support requests from users of our Abacus ticketing system – they’re typically abuse or security desk administrators at ISPs or ESPs, inside corporate firewalls and protected by multiple layers of security and malware protection. We’ve been using it since around 1997, so we’ve had a good, spam-free run, but in the past few days...
RSS - Posts