We use cookies to provide you with a better experience. If you continue to use this site, we'll assume you're happy with this. Alternatively, click here to find out how to manage these cookies

hide cookie message
80,259 News Articles

Spammers mining free web-hosting services

Conning their way around email filters

Spammers have found a way to mine free web-hosting services for cash.

Online scammers have long used free hosting services such as Yahoo Geocities or Tripod as a way to get around email filters that might otherwise recognise their spammy websites. But now some enterprising spammers have begun selling each other these free web pages, according to security vendor McAfee.

For $25 (about £13) per week a spammer will sell 50 web-hosting accounts that can be used to redirect web traffic to sites that normally would be flagged.

"These 'link providers' create and maintain thousands of free hosting accounts on behalf of the spammers," wrote McAfee's Nick Kelly in a recent posting to McAfee's Avert Labs blog.

"They know that the bigger hosts are unlikely to get blacklisted because they have so many legitimate users," he added.

Scammers also use the free web pages to try to manipulate search engines, by making it look as if their websites are widely linked, said Adam O'Donnell, senior research scientist with Cloudmark, an email-filtering company.

And while the free hosting providers are taking steps to shut down this abuse, they appear to be fighting a losing battle.

In late June, Cloudmark researchers were seeing about 1,500 fake URLs on any given day on one of the most abused free hosting services (O'Donnell declined to name names). One month later, that number had jumped to 3,500.

Spammers are simply able to out-pace the hosters' security teams, O'Donnell said. "They will gain more hosts for their pages than the company is able to take down," he said.

The free hosters have been placed in a tough position because they do not want to shut down legitimate users, but they also do not have the technical resources to mine spam for web pages that are being misused, O'Donnell said.

Lately, however, the hosters have been partnering with security vendors to address the problem.

Cloudmark is working with some hosting providers, hoping to sell them 'reputation' information that tells them how many times their member URLs are being seen in spam.

McAfee has been providing similar information to an undisclosed service provider, Kelly wrote. "This relationship has cut the abuse observed by us on that provider by over 90 percent in less than a week."

He added, "Let's hope those spammers are buying their new watches from pound$hop rather than Bolex this summer."

IDG UK Sites

LG G4 Note UK release date and specification rumours: Samsung Galaxy Note 5 killer could be the LG 3......

IDG UK Sites

In defence of BlackBerrys

IDG UK Sites

Why we should reserve judgement on Apple ditching Helvetica in OS X/iOS for the Apple Watch's San...

IDG UK Sites

Retina 3.3GHz iMac 27in preview: Apple cuts £400 of price of Retina iMac with new model