P2P as a new spam medium, moving from PoC to full operations

spam on p2p networks used to be mainly with advertising inside downloaded movies and pictures (mainly pornographic in nature), as well as by hiding viruses and other malware in downloaded warez and most any other file type (from zip archives to movie files). further, p2p networks were in the past used for harvesting by spammers.
today, p2p has become a direct to customer spamvertizing medium. this has been an ongoing change for a while. as we speak, it is moving from a proof of concept trial to a full spread of spam, day in, day out.
the idea is not new, but now it is becoming serious.

some choice picks:
ebook – googlecash – make money using google (learn to use affiliate programs to make easy money).pdf [i've been made aware this one is a real, yet pirated, book. call it a false positive]
us banks acounts information [dir]
how to create an automated ebay money machine.pdf
easy chair millionaire review.pdf
press equalizer review – flood your site with targeted traffic, achieve top rankings and gain dozens or more backlinks.pdf
top home based jobs [dir]

and so on. these are just some of the scams now being pushed over p2p.

we discussed this before; it started with fake books on the subject of online marketing, and now it has gone all the way to spammers/phishing/”affiliate programs”/spyware (or in other words online fraud related organized crime groups) looking for new ways and mediums by which to reach target audience, with email becoming more and more scrutinized and filtered.

using p2p is just the latest in a long line of mediums, ranging from the fax machine to im and comment spam on blogs. in the past we have seen proof of concept spam seeding on p2p networks, now and for the past month in general, it has become common practice and covers everything from click fraud to full-fledged phishing and money mule recruitment.

i fully expect this medium to become more important to the bad guys, as many an internet user are on p2p networks. further, the bad guys are already diversifying their spam seeds, moving from just ebooks and downloadable books in pdf format to others file types. these are sent through .doc, and even inside directories for download.

so, how do people filter p2p searches and downloads? do they in any way intend to? how do p2p networks intend to deal with this?
most likely, they don’t and won’t. i don’t really see organizations implementing anti-spam products for p2p (not that these exist), nor do i see isps protecting their users on p2p (when they generally don’t want them there).

p2p will remain one of the worst mediums for infecting users with malware, and now it will become a very busy spam location. i wonder for how long users will be able to download on p2p networks without encountering mainly fakes. so far, spammers have not been imitating “legitimate” p2p files such as, say, mp3 songs, but it is not far in the future when this will happen.

at that time, the p2p networks which will react will survive. it won’t be easy. especially as i don’t predict they will do so until it is, by far, too late. much like with spam, botnets and spyware, threats are generally ignored until they become very painful. in my opinion the bit torrent network will be easier to control, as downloads can be verified if seeded and advertised via trusted sites. large torrent sharing sites are the main threat.

gadi evron,
ge@beyondsecurity.com.

Share
  • http://www.BeyondSecurity.com Lev

    Whoever use P2P “search” ability is vulnerable to scam, spam and malware. However one who use designated links from p2p resource directories like torrent directories or ed2k lists is less vulnerable. Pretty same way how it works with Web search engines. Google users are vulnerable to scam/spam and co.

  • Pingback: InfoWorld Tech Watch

  • Erik Newton

    Interesting take on it. Do you object to legitimate ads in the search results or are you mainly objecting to ads and scams masquerading as content?

  • sunshine

    #2