iTnews

Hackers blamed for MessageLabs spam

By Brett Winterford on Nov 12, 2010 11:16AM
Hackers blamed for MessageLabs spam

Antispam company insists it can keep customers in check.

Managed email provider MessageLabs has blamed a security breach on one of its customer's networks for a bout of spam detected from its IP address range.

The incident saw the vendor - which incidentally is paid to protect customers from inbound spam - included in block lists by other anti-spam services.

As detailed exclusively in iTnews, MessageLabs customers found that some of their outbound mail bounced last week after the service providers' IP address was included in the SORBS antispam block list.

MessageLabs has since investigated the incident and concluded that its addresses were blocked due to a security incident affecting one of its customers.

"From time to time," said MessageLabs engineer Paul Woods, one of the company's 30,000 clients "will send mail that it is considered to be spam by us or one of the block list providers.

"In the instance it appears that a customer's webmail service had been compromised by a spammer and used to send spam emails," he said.

Woods said that MessageLabs' systems can detect abnormal numbers of emails being sent from a client account and delay the customer's ability to send email.

But in this case, these processes kicked in after "a small number of spam emails were sent, which resulted in one of our IP addresses being listed on the SORBS block list for a short period."

MessageLabs was unwilling to disclose what industry the affected customer operated in, nor its country of origin. "But we can say that the most common form of abuse of legitimate email accounts is often caused by insecure passwords on corporate webmail systems," Woods said.

MessageLabs was also able to re-route email from a blocked cluster to another cluster in order to ensure its other clients are not affected.

The company has toned down its past criticism of the SORBS model.

"Some of the block list providers have very aggressive rules and may occasionally add a block based on a single email that is deemed spam-like," Woods said.

"We work very closely with block list providers like SORBS and Spamhaus who generally play a very positive role in the fight against spam."

Woods said MessageLabs did not pay SORBS a fee to remove its IP addresses from the block list.

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © iTnews.com.au . All rights reserved.
Tags:
antispam block hackers list messagelabs security sorbs spam

Partner Content

The five questions every storage buyer should ask
Promoted Content The five questions every storage buyer should ask
IT’s control over digital infrastructure is slipping, reports The Economist Intelligence Unit
Promoted Content IT’s control over digital infrastructure is slipping, reports The Economist Intelligence Unit
AWS She Builds seeks to bridge the great IT gender gap
Promoted Content AWS She Builds seeks to bridge the great IT gender gap
Where human meets digital
Promoted Content Where human meets digital

Sponsored Whitepapers

The 5 steps to effective data protection
The 5 steps to effective data protection
Understanding the next security control points: applications and workloads
Understanding the next security control points: applications and workloads
Best security practices after rapid Digital Transformation
Best security practices after rapid Digital Transformation
The CISO View 2021 Survey: Zero Trust and Privileged Access
The CISO View 2021 Survey: Zero Trust and Privileged Access
How and why to backup your Office 365 tenant
How and why to backup your Office 365 tenant

Events

  • Get into the Driver’s Seat with Jaguar TCS Racing
By Brett Winterford
Nov 12 2010
11:16AM
0 Comments

Related Articles

  • Russia ratchets up internet control by blocking Tor
  • Facebook says hackers in Pakistan targeted Afghan users amid government collapse
  • Hackers used Pulse Secure flaw to target US defence industry
  • Chinese hackers used Facebook to target Uighurs abroad, company says
Share on Twitter Share on Facebook Share on LinkedIn Share on Whatsapp Email A Friend

Most Read Articles

Intel orders ASML system for well over $470 million

Intel orders ASML system for well over $470 million
Kmart Group lands new head of cyber security

Kmart Group lands new head of cyber security
Coles Group taps Australia Post as it assembles a new-look tech leadership team

Coles Group taps Australia Post as it assembles a new-look tech leadership team
NSW Justice takes charge of massive government ERP consolidation

NSW Justice takes charge of massive government ERP consolidation

Digital Nation

Catastrophic governance failures are rooted in organisational culture
Catastrophic governance failures are rooted in organisational culture
Case Study: Keeping CPA's board up to date about cybersecurity risks
Case Study: Keeping CPA's board up to date about cybersecurity risks
Case Study: Intrepid Group uses global travel shutdown to reimagine HR function
Case Study: Intrepid Group uses global travel shutdown to reimagine HR function
Fringe innovation unlocks power of diverse thinking
Fringe innovation unlocks power of diverse thinking
Highlights 2021: Automation drives marketing success but complexity torments delivery
Highlights 2021: Automation drives marketing success but complexity torments delivery
All rights reserved. This material may not be published, broadcast, rewritten or redistributed in any form without prior authorisation.
Your use of this website constitutes acceptance of nextmedia's Privacy Policy and Terms & Conditions.