Security Incidents mailing list archives
RE: Decrease in Threats?
From: "Tom Milliner" <tom.milliner () verizon net>
Date: Sun, 29 Jan 2006 15:45:45 -0600
Bill, do you use MS Exchange, and if so, what method of grey listing do you use? Tom Milliner, CPA, MCSE 2404 Summer Place Dr. Irving, TX 75062 (241) 540-2741 tom.milliner () verizon net -----Original Message----- From: Bill Borton [mailto:bborton () conwin com] Sent: Thursday, January 26, 2006 10:46 AM To: incidents () securityfocus com Subject: Re: Decrease in Threats? Hi there, Your mention of fewer viruses but not spam made me think this might be worth mentioning: One of my mail servers that was getting 15,000 - 20,000 inbound infected messages a month was also getting pounded by spam. I an attempt to mitigate the spam I implemented "Greylisting". It's working very well for that site. I don't have hard numbers available at the moment, but I guesstimate that it took spam down by about %90. The thing is, it also blocked the majority of inbound infected messages as well. It went from tens of thousands to hundreds. It makes perfect sense, but it definitely caused me a double take when I first looked at it... -Bill On Wed, 25 Jan 2006 14:55:09 -0500 "Rohny Jotton" <rohnyjotton () hotmail com> wrote:
In the last 30 days, I have experienced a extraordinary decrease in email threats being stopped at the edge and also being seen on our quarantine server. My first thought was something got in and disabled our security services, but upon investigation that is not the case. It looks like the quantity has indeed dropped, and I am trying to confirm it (only virus's, worms, etc.; not spam). I've been trying to find any trending of threats seen worldwide, and the only one I have found is at f-secure. The chart seems to support what I'm seeing but I'm curious if others are seeing a decrease also. If indeed the threats are dropping off, is it due to the efforts undertaken to mitigate the WMF flaw? Also if anyone knows of other sites that show historic trends, I'd appreciate being given the link. I see most antivirus sites will only give percentage breakdowns and not quantities seen. Thanks You _________________________________________________________________ Don't just search. Find. Check out the new MSN Search! http://search.msn.click-url.com/go/onm00200636ave/direct/01/
Current thread:
- Decrease in Threats? Rohny Jotton (Jan 25)
- Re: Decrease in Threats? Aubs (Jan 25)
- Re: Decrease in Threats? Andrew Simmons (Jan 26)
- Re: Decrease in Threats? ACMurray (Jan 25)
- RE: Decrease in Threats? James C Slora Jr (Jan 25)
- Re: Decrease in Threats? Bill Borton (Jan 27)
- Re: Decrease in Threats? Bojan Zdrnja (Jan 29)
- Re: Decrease in Threats? Will Aoki (Jan 30)
- Re: Decrease in Threats? Gene Rackow (Jan 30)
- Re: Decrease in Threats? Bojan Zdrnja (Jan 29)
- RE: Decrease in Threats? Tom Milliner (Jan 29)
- Re: Decrease in Threats? Kurt Seifried (Jan 30)
- Re: Decrease in Threats? Aubs (Jan 25)