Spam & Spyware — Uninvited Guests

Not so long ago, computer users around the world were busy installing anti-virus utilities to protect their systems against outbreaks of malicious code that seemed to increase daily in scope and severity. Thousands worldwide fell victim to viruses with names like Sasser and MyDoom that quickly gained notoriety. Today, most coporate and home users have learned the importance of keeping systems protected, and reports of widespread virus outbreaks are rare. This learning has been costly, and only recently has the tide been turned.

While virus propagation has been more effectively controlled in 2005, two other pests continue to plague Internet users: Spam and Spyware. While they are less destructive than some viruses, fighting them is time consuming and expensive for home computer users and corporate network managers alike.

Spam: You've got mail... and more mail... and more mail

Of the two, Spam is the more familiar problem. Just about all of us know the frustration of receiving unsolicited email. Only the newest and most private email addresses are Spam free. Many mail systems use some kind of Spam filtering now, and they stop the majority of Spam before the intended recipients ever see it.

At Leapfrog Services, we manage networks and email for over 1,500 computer users. On most days, around ninety percent of the messages received on our email servers are flagged as Spam by the mail system and quarantined. This requires extensive resouces, but it spares our clients from having Inboxes cluttered with unwanted messages, and it also prevents the propagation of destructive viruses.

Spam filtering can be adjusted to be more lenient or more stringent, and many mail systems provide a feature called "white listing" to assure that messages from trusted correspondents are delivered. This allows a mail user or network administrator to control which mail should always be accepted. Because some viruses and Spyware are transmitted through email messages, white listing should be used with discretion.

Spyware: The software you didn't know was there

Spyware differs from other software in several respects. No purchase or license is necessary. If it is on your computer, it was installed without your knowledge or consent. You don't know where it came from, or when. Its main mission is to monitor some of the information on your computer and to make that information available to outside sources as needed. More sinister consequences may result.

How does Spyware get installed? It is distributed through website visits and file downloads. Not all Spyware is harmful; much of it simply tracks visits to websites. The destructive types of Spyware are generally referred to as Malware. Downloading free software, such as peer-to-peer file sharing programs, increases your chances of acquiring Malware. Even seemingly innocent files like screen savers, backgrounds, and media files may bring Malware to your system when you download them.

At worst, Spyware's ability to track keystrokes, scan hard drives, and change system and registry settings is a tremendous personal and enterprise security threat. These activities can lead to identity theft, data corruption, and even theft of company trade secrets. "Today, more malicious Spyware can easily infiltrate corporate firewalls," said Brian Burke, research manager, Security Products at IDC. "These programs make their way into the corporate Intranet under the guise of less-threatening network traffic and, once in, they can wreak havoc."

Fighting Spyware, like fighting Spam, requires a solution that maintains a balance between leniency and stringency. Leapfrog has evaluated Spyware prevention solutions as they have become available. A hands-down winner has not yet been identified, according to Leapfrog CTO Emmett Hawkins. Because Spyware takes advantage of some legitimate system features, a solution that is too aggressive can cause problems, and a solution that is too cautious may fail to identify all Spyware. Leapfrog continues to review enterprise-class solutions as they become available, and our engineering team will implement one when they conclude that it is the best solution for our clients.

Calls to our support center that involve the presence of Spyware have increased in the last few months. Common symptoms are a slow-down in overall system performance, excessive pop-up ads when using a web browser, and the inability to complete transactions on some websites. Diagnosing the presence of Spyware and removing it from a computer can be a lengthy process.

If you are a Leapfrog client experiencing an increase in pop-up ads or you suspect that Spyware may be present on your computer, contact the Leapfrog support center. Use the Frogfoot icon on your desktop to submit a request, or send email to support@ribbit.net, or call us at 404.870.2124.

If your home computer has been affected, you can download Microsoft Defender from www.microsoft.com/downloads. This program is offered free to individuals who have a computer with a current, licensed installation of Windows. Initial reports from those who have used it have been encouraging. When downloading this software, you may be required to validate your Windows installation, so you should have your 25-character product key available. A sticker with this key imprinted is usually found on computers that were purchased with Windows already installed.

Throughout the evolution of malicious code and Spam, some guidelines have not changed: never open an email message or attached file unless you know and trust the sender; never give personal or financial information or passwords in response to a request by email, even if the requester seems to be legitimate; and on your home computers, keep your antivirus software up to date by using its auto-update option.

For your office computers, hire Leapfrog. We are experienced professionals using enterprise-class technology, dedicated to maximizing the security, reliability, and performance of your network.

Microsoft is a registered trademark of Microsoft Corporation.

This article originally appeared in the March, 2005 issue of FrogTalk.