Dow+150.25up+1.52%
10,058.64
Nasdaq+24.82up+1.17%
2,150.87
S&P+13.78up+1.30%
1,070.52

MSN Money video

Video on MSN Money
This video requires the installation of the free Adobe Flash Player. Click here to download.
More video on MSN Money . . .

Readers' Choice

Ratings table
RatingTop 5 Articles
4.13Growth won't dig US out of this hole
3.984 reasons we get ripped off
3.93Battling the system: A patient's tale
3.84Mortgage hardship applicants in limbo
3.82The coming economic crisis in China
View all Top-Rated articles

Editor's Choice

Who clicks on spam? We do © Photodisc/Superstock

Extra7/20/2009 2:15 PM ET

Who clicks on spam? We do

Even people who consider themselves sophisticated about Internet security are at risk of downloading malware or viruses, an expert says. We're not as careful as we think we are.

By MSN Money staff

Do some of us actually believe there are hot singles in our towns eagerly awaiting our response?

Yep.

More than half of e-mail users surveyed by the Messaging Anti-Abuse Working Group, an anti-spam trade organization, had clicked on a mail they suspected to be spam. A full third had sent a response of some kind to the spammer; one in eight was actually interested in buying the product or service being shilled.

The question posed to 800 computer users in the U.S. and Canada: What made you click on that spam?

 
The reasons they gave: 

Had not clicked

48%

Clicked by mistake

17%

Unsure / don't know

13%

Interested in product

12%

Wanted to see what would happen

6%

Other

3%

(Percentages do not add up to 100 because of rounding.)

David Ferris, a principal at analytics firm Ferris Research, said in comments accompanying the report, "The volume of people who still respond to spam is regrettable, because it's an economic incentive to spammers."

The group, which released its findings last week, estimates that 85% to 90% of all e-mail is "abusive," with even a minuscule response rate driving "a booming spam-driven underground economy."

University of California researchers last year infiltrated the world of spam, offering a peek of the scale of the problem. Diverting 350 million of the spam e-mails generated by the Storm botnet, researchers racked up just 28 "sales" in 26 days for their own fictitious product, a penile-enlargement product offered at just under $100. But those 350 million e-mails represented just 1.5% of the spam generated by that bit of malicious code. Using their own response rate and extrapolating it to the entire botnet, researchers concluded its spammers could make as much as $3.5 million a year.

It happens . . . to someone else

The Messaging Anti-Abuse Working Group said its participants weren't unfamiliar with online security issues. Two-thirds described themselves as "very" or "somewhat" experienced with Internet security, using precautions such as avoiding posting their e-mail address or entering a separate address for activities that might prompt spam.

Yet users were far too cavalier about the threat from e-mail-spawned viruses, the Messaging Anti-Abuse Working Group warned. Only 10% of computer users believed themselves at risk of downloading malware, the survey found, while 43% said it was, for them, impossible or extremely unlikely.

Video on MSN Money

Web vigilantes take on robo-callers © The Wall Street Journal
Web vigilantes take on robo-callers
Millions of Americans have received phantom calls with pitches for extended auto warranties. Lawsuits are pending, but one Internet community already has taken matters into its own hands.

When it came to identifying spam, two-thirds used the sender's name as a gauge, followed by 45% who looked at subject lines and 22% who spotted other "visual indicators." About 3% relied on the time a message was sent to identify its legitimacy.

"You might assume that the more technically savvy you are, the less likely you are to be hit by a virus, but that is not true," Ferris Research said in its comments. "Our previous research indicates that the more you use computers, the more likely you are to get hit by a virus."

Rate this Article

Click on one of the stars below to rate this article from 1 (lowest) to 5 (highest). LowRate it 1Rate it 2Rate it 3Rate it 4Rate it 5High
 
Join the discussion!
Add a comment
Sort by:
1 - 10 of 94
PreviousNext
Monday, July 20, 2009 2:13:58 PM

For me it's kind of a competition thing.

 

The total of all my winnings in the UK lottery is running neck and neck with the U.S. Government deficit.

 

 

Monday, July 20, 2009 2:40:40 PM

I don't get informed that I'm the winner of 5 million English pounds much any more or that somebody has left me an inheritance of a zillion bucks or the FBI has money they've discovered that belongs to me.  The new thing is "We wish you much happy.  We deal in all sorts computers and electronics.  We have best price."  Blah, blah, blah. 

The main tip-off for me are the strange names used in the emails or email addresses along the lines of, "golabingbang@wawa.mail.  I mean, DUH!

Tuesday, July 21, 2009 5:22:43 AM

Feel free to throw some of those UK lottery winnings to this side of the pond!

I haven't had any 'CONGRATULATION'S WINNER: You've won the US Lottery' types of emails before, myself.

I just tend to get product emails telling me my sex life could be improved with this that and the other.

I had one to my Gmail once from 'me' saying "Hello it's me," and in the subject line it said "Yes, this is you." I know that some spam emails can be clever but really... It was from some random company.

 

Tuesday, July 21, 2009 6:06:38 AM
Well as PT Barnum once said "There's a sucker born every minute". Seems I'm not one of them. As in just over 10 years I've not gotten hit once with a virus or ever gotten a bit of malware or spyware on my PC.

Even if just moments ago I deleted 55 spams from my junk email folder (checked everyday). Even if I were a sucker, I'd have to be dense to think that I won 3 million pounds in a UK lottery (especially when I got 6 emails from 6 different people/sources telling me so.)

My favorites are the the ones that either threaten you... (If you don't respond now you will suffer!) or the ones that make no sense (Keyboard Slam messages) vnrweohreuo 0938hj8fn44.

I recently got one that was "Supposedly" from Bank of America, looked real legitimate too, except the link was for some site in the Netherlands.Eye-rolling Sadly it got forwarded to BOA's fraud department.
Tuesday, July 21, 2009 6:15:33 AM
When I started to read this article, it really caught my attention in the first table of reasons why each of the 800 computer users polled clicked through on a suspected/potential spam link. I am no math whiz, but when there is a disclaimer on the table that indicates "Percentages do not add up to 100 because of rounding." we should expect the total to be somewhere close to 100% - say 99% or 101% - NOT 112%! That's not a rounding error, that is more likely a fabrication error. I stopped reading at that point 'cause there's lies, damn lies, and statistics.
Tuesday, July 21, 2009 6:34:13 AM
Ha! Good Call VolFanInHawaii! I'd go so far as to say "maybe" 107 (as there are seven categories that could potentially have 1 extra added by rounding up).

Math is simple when you use a calculator Open-mouthed Maybe theirs wasn't working that day?
Tuesday, July 21, 2009 6:38:13 AM
Its companies like Digital River that provide the scum of the world the ability to send spam.
Using Affiliate Marketing from Digital River, a person can use their Blue Hornet solution to send out millions of emails (http://www.bluehornet.com/site/)
They then get affiliates with the DirectTrack software that allows users to run campaigns which are just mass amounts of spam and advertisements (http://www.directresponse.com/). 

An end user has the option to "unsubscribe" from these lists however by unsubscribing, you are essentially subscribing to hundreds/thousands of other offers through their DNEList product.  Yes, you will become unsubscribed from the initial offer, however your email address is placed on a Do Not Email list for the specific offer.  When an affiliate or advertiser downloads this list, they instantly have your email address and will spam you even though you unsubscribed from the offer.  There is no way to say how an advertiser or affiliate got your email address even though you unsubscribed from the original offer, hence why you get spam and the same offers sent even though you unsubscribed because they are being sent from other affiliates/advertisers.  Some affiliates/advertisers solely take these Do Not Email Lists and sell them to mass spammers.

One of their top clients is CPA Empire/Scott Richter
http://www.youtube.com/watch?v=FVfIKsummxo

I don't understand why people invest in Digital River stock because they provide software like this.

Tuesday, July 21, 2009 6:47:57 AM
Oh, I don't know.  Sometimes you can do both, you know?  For example, I look at the sender's name, and if it sounds vaguely familiar, I then look at the subject line as well.  Very seldom do I actually open any of these emails, and when I do, I DAMN SURE DON'T follow the bloody links in it!  Yeesh!  So the total percentage might be a bit higher because some of us do take that extra 30 seconds or so to examine the whole thing...
Tuesday, July 21, 2009 7:06:16 AM
It doesn't take a rocket scientist to spot most of these scam e-mails. My personal favorites are the ones supposedly from the FBI. All anyone has to do is look at the sending address. It's usually something like joeblow@hotmail.com. If it REALLY was from the FBI, or any other gov't agency for that matter, the address would end in .gov.
Tuesday, July 21, 2009 7:18:49 AM

after read this article i check my email and i got this msg... Sad

 

This is to inform you that the Nokia online Promotion, has selected you for a yearly donation
of 700,000.000 (Seven Hundred Thousand pounds). Contact us with your FULL NAMES: ADDRESS:
AGE:TEL NUM: SEX: COUNTRY. Our official Email: nokiaprommo.frankwilliams@9.cn
1 - 10 of 94
PreviousNext
 
To add a comment, pleasesign in