Detecting Spam Zombies by Monitoring Outgoing Messages

Duan, Zhenhai; Chen, Peng; Sanchez, Fernando; Yang, Dong; Stephenson, Mark W.; Barker, J. M.

doi:10.1109/tdsc.2011.49

Cited by 41 publications

(11 citation statements)

References 16 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…It is based on a powerful statistic tool Sequential Probability Ratio Test (SPRT). This SPOT approach depend upon two important terminologies count threshold and percentage threshold to detect the malicious spam message from internal machine [18].…”

Section: Literature Reviewmentioning

confidence: 99%

“…Lack of awareness of employee and its users about system in IT industry continues to be nightmare for cloud computing. This loop holes can be exploit by attackers to plan zombie attack [18,25] and phishing attack [21]. Reasons for the existence of these vulnerabilities are poor hiring strategy& background check up, lack of employee screening & security education impartment [10,33].…”

Section: Employee and Cloud User Unawarenessmentioning

confidence: 99%

“…a cryptographic hole discovered in Amazon EC2 management interface by performing signature wrapping and cross site scripting (XSS) attacks, whereby interfaces used to manage cloud resource are hijacked. It allows creating, modifying and deleting machines images, change administrative password and setting [34].This may cause zombie attack [18,25], phishing attack [21] and service injection attack [26 to 28] etc.…”

Section: Easy and Un-authorised Accessmentioning

confidence: 99%

See 2 more Smart Citations

Review on Security Aspects for Cloud Architecture

Alam

Muqeem

Khan

2018

IJECE

View full text Add to dashboard Cite

Cloud computing is one of the fastest growing and popular technology in the field of computing. As the concept of cloud computing was introduced in 2006. Since then large number of IT industries join the queue to develop many cloud services and put sensitive information over cloud. In fact cloud computing is no doubt the great innovation in the field of computing but at the same time also poses many challenges. Since a large number of organizations migrate their business to cloud and hence it appears as an attractive target for the malicious attack. The purpose of the paper is to review the available literature for security concerns and highlight a relationship between vulnerabilities, attacks and threats in SaaS model. A mapping is being presented to highlight the impact of vulnerabilities and attacks.

show abstract

Section: Literature Reviewmentioning

confidence: 99%

Section: Employee and Cloud User Unawarenessmentioning

confidence: 99%

Section: Easy and Un-authorised Accessmentioning

confidence: 99%

See 1 more Smart Citation

Review on Security Aspects for Cloud Architecture

Alam

Muqeem

Khan

2018

IJECE

View full text Add to dashboard Cite

show abstract

“…Many diverse schemes for botnet detection have been proposed, such as honeypot or honeynet for capture and analysis [14], correlation analysis of malicious behaviors [15], detection approaches for different C&C mechanisms (e.g. IRC, HTTP, DNS, or P2P) [16][17][18][19], and identifying bots from DDoS and spam [20,21]. However, these techniques mainly focus on the network traffic and obtain evidences of botnet activities indirectly.…”

Section: Related Workmentioning

confidence: 99%

Botnet Detection Architecture Based on Heterogeneous Multi-sensor Information Fusion

Wang¹,

Hou²,

Zhang³

2011

JNW

View full text Add to dashboard Cite

As technology has been developed rapidly, botnet threats to the global cyber community are also increasing. And the botnet detection has recently become a major research topic in the field of network security. Most of the current detection approaches work only on the evidence from single information source, which can not hold all the traces of botnet and hardly achieve high accuracy. In this paper, a novel botnet detection architecture based on heterogeneous multi-sensor information fusion is proposed. The architecture is designed to carry out information integration in the three fusion levels of data, feature, and decision. As the core component, a feature extraction module is also elaborately designed. And an extended algorithm of the Dempster-Shafer (D-S) theory is proved and adopted in decision fusion. Furthermore, a representative case is provided to illustrate that the detection architecture can effectively fuse the complicated information from various sensors, thus to achieve better detection effect.

show abstract

“…About 8 years ago, spam was sent by spammer's own e-mail servers. Approximately 45% -60% of spam is now sent from compromised systems distributed over the Internet [5][6][7][8]. Spam relaying increases the distribution base and at the same time eludes and overwhelms spam detection systems [9].…”

Section: Introductionmentioning

confidence: 99%

Efficient Spam Filtering System Based on Smart Cooperative Subjective and Objective Methods

Mohamed¹

2013

IJCNS

View full text Add to dashboard Cite

Most of the spam filtering techniques are based on objective methods such as the content filtering and DNS/reverse DNS checks. Recently, some cooperative subjective spam filtering techniques are proposed. Objective methods suffer from the false positive and false negative classification. Objective methods based on the content filtering are time consuming and resource demanding. They are inaccurate and require continuous update to cope with newly invented spammer’s tricks. On the other side, the existing subjective proposals have some drawbacks like the attacks from malicious users that make them unreliable and the privacy. In this paper, we propose an efficient spam filtering system that is based on a smart cooperative subjective technique for content filtering in addition to the fastest and the most reliable non-content-based objective methods. The system combines several applications. The first is a web-based system that we have developed based on the proposed technique. A server application having extra features suitable for the enterprises and closed work groups is a second part of the system. Another part is a set of standard web services that allow any existing email server or email client to interact with the system. It allows the email servers to query the system for email filtering. They can also allow the users via the mail user agents to participate in the subjective spam filtering problem.

show abstract

Detecting Spam Zombies by Monitoring Outgoing Messages

Cited by 41 publications

References 16 publications

Review on Security Aspects for Cloud Architecture

Review on Security Aspects for Cloud Architecture

Botnet Detection Architecture Based on Heterogeneous Multi-sensor Information Fusion

Efficient Spam Filtering System Based on Smart Cooperative Subjective and Objective Methods

Contact Info

Product

Resources

About