Axel Koester for The New York Times
Albert Ahdoot and Alyx Sachs have operated
the e-mail marketing business NetGlobalMarketing
in Los Angeles for about a year.
Posted on 04/22/2003 5:43:55 AM PDT by Pharmboy
Axel Koester for The New York Times
Albert Ahdoot and Alyx Sachs have operated
the e-mail marketing business NetGlobalMarketing
in Los Angeles for about a year.
Alyx Sachs is no longer sending people e-mail offering to "fix your credit risk free."
Confronted by an increasing number of individuals, businesses and Internet service providers using software meant to identify and discard unwanted junk e-mail — commonly known as spam — Ms. Sachs has been forced to become more creative in her marketing pitches. The subject line on her credit e-mail, for example, now reads "get a fresh start."
From a small office on Sunset Boulevard in Los Angeles, millions of messages prepared on behalf of others by Ms. Sachs and her partner are still going out to e-mail in-boxes every day, promising not just to restore a poor credit rating but also to sell printer ink, 3-D glasses and, lately, even playing cards with pictures of wanted Iraqi leaders.
In the cat-and-mouse game of e-mail marketers and those trying to stop them, the spammers are still winning.
So far, nothing that has been tried to block spam has done much more than inconvenience mass e-mailers. Just as Ms. Sachs's company, NetGlobalMarketing, has been able to reword its e-mail to evade spam filters, others use even more aggressive tricks to disguise the content of their messages and to send them via circuitous paths so their true origin cannot be determined.
"There is no silver bullet," said Lisa Pollock, the senior director of messaging at Yahoo, the popular Web portal. "There will always be people who can find a way to get around whatever you have in place."
No doubt making a living selling things by e-mail is becoming harder. Not only are more messages being blocked by automated antispam systems, more senders of e-mail are also facing legal action. Last week, America Online and the Federal Trade Commission each filed suit against e-mailers that they say are illict spammers. Congress is seriously considering legislation to crack down on spam.
But the infestation is growing faster than the antispammers can keep up. Brightmail, which makes spam-filtering software for corporate networks and big Internet providers, says that 45 percent of the e-mail it now sees is junk, up from 16 percent in January 2002. America Online says the amount of spam aimed at its 35 million customers has doubled since the beginning of this year and now approaches two billion messages a day, more than 70 percent of the total its users receive.
Indeed, the spam problem defies ready solution. The Internet e-mail system, designed to be flexible and open, is fundamentally so trusting of participants that it is easy to hide where an e-mail message is coming from and even what it is about.
Another reason there is so much spam is that, with a simple computer hookup and a mailing list, it is remarkably easy and inexpensive to start a career in e-mail marketing. Companies that offer products like vitamins and home mortgages as well as those selling items like penis and breast enlargement kits will allow nearly any e-mail marketer to pitch their wares, paying a commission for any completed transaction.
The microscopic cost of sending e-mail, compared with the price of postal mailings, allows senders to make money on products bought by as little as one recipient for every 100,000 e-mail messages. Internet marketing companies typically charge $500 to $2,000 to send a solicitation to a million in-boxes, but the cost goes up if the list is from a reputable source or is focused on people in certain favored demographic groups. Sending the same offer to a million people by mail costs at least $40,000 for a list, $190,000 for bulk-rate postage and more for paper and printing.
Albert Ahdoot, for example, started a part-time business using e-mail to sell printer-ink refill systems while he was in college. When he dropped out of medical school, he hooked up with Ms. Sachs, a former producer with Geraldo Rivera who later worked in marketing at several Internet companies. With her client contacts, his technology and some e-mail lists they acquired, they started their business about a year ago.
Like many in the e-mail marketing business, Ms. Sachs says her e-mail blitzes are not spam because she sends them only to lists of people who have agreed to receive marketing offers over the Internet. These opt-in lists, as they are called, are generated when Internet users enter a contest on the Web or sign up for an e-mail list in which the fine print says the user agrees to receive "occasional offers of products you might find valuable from our marketing partners."
Arguing that no one is forced to sign up for e-mail pitches, Internet marketers say that the attack on spam has already gone too far, interfering with legitimate business.
"We have allowed these spam cops to rise out of nowhere to be self-appointed police and block whole swaths of the industry," said Bob Dallas, an executive of Empire Towers, an e-mail firm in Toledo, Ohio, widely cited on antispam lists used by many Internet companies.
"This is against everything that America stands for," Mr. Dallas added. "The consumer should be the one in control of this."
But activists who oppose spam say that some e-mailers who argue that they have permission to send e-mail to a certain address often do not. Earlier this year, a New York court ruled that a Niagara Falls, N.Y., company, MonsterHut, had violated antifraud laws for misrepresenting opt-in permissions.
Lower on the marketing totem pole than opt-in mailing is what the industry calls bulk e-mailing: blasting a message out to any e-mail address that can be found. CD-ROM's with tens of millions of e-mail addresses are widely available — advertised by e-mail, of course. These addresses have been harvested by software robots that read message boards, chat rooms and Web sites.
Others use what are called dictionary attacks, sending mail to every conceivable address at major e-mail providers — first, say, JohnA @example.com, then JohnB @example.com, and so on — to find the legitimate names.
Such distinctions, however, are usually lost on users who, in recent years, have found unwanted marketing pitches are overwhelming their legitimate e-mail.
As dissatisfaction has risen, the big Internet service providers, like AOL, and purveyors of free e-mail accounts, including Yahoo and Microsoft's Hotmail, have all greatly accelerated efforts to identify and block spam. Among other things, they have created prominent buttons for users to report offending e-mail as spam.
There is little that Internet services can do to keep spammers from gathering e-mail addresses directly from users. Many people still will type virtually their life history into an unknown Web site that claims to be offering a chance to win a Lexus.
But some Internet providers have built systems to identify when they are being subject to dictionary attacks and cut them off quickly before valid e-mail addresses are deduced.
To identify phrases and other patterns that occur in spam, the Internet service providers look at what is received in thousands of so-called honeypot e-mail accounts — those that have no legitimate reason to receive e-mail messages.
The spammers quickly caught on to this technique, however. So they have varied their messages — morphing, they call it — often by simply appending random words or characters, so the filtering systems no longer see millions of identical solicitations.
At the same time, e-mail users now receive spam that is not only unwanted but cryptic, too. In an attempt to avoid automatic filters that search for certain phrases, marketers offer, for example, "Her bal V1agra" and ways to make "F*A*S*T C*A*S*H."
So the Internet companies now look for unusual spelling as well. "Some people have jobs that change day to day," said Charles Stiles, the technical manager of AOL's postmaster team, which looks after spam blocking. "Ours changes from minute to minute. A filter that works one day will likely not work the next."
Another way spammers avoid detection is to send mail using the HTML format, the language mainly used to display Web pages. Spammers and major advertisers alike think that e-mail with varied type and inserted graphic images is more persuasive than ordinary text. But the spammers also find that this format makes it easier to evade the filtering programs.
A lot of spam now puts the actual sales pitch in an image that is only displayed when the user reads her e-mail. The filter reads merely some random text and the Web address of the image to be displayed.
Spam filters are now being adjusted to be suspicious of e-mails that only have links to Web images. But it is still hard for any program to distinguish, say, a pornographic come-on from a baby picture, especially when processing hundreds of millions of messages a day.
Tom Williams for The New York Times
Charles Stiles, center, technical manager for
America Online's antispam team, says a "a filter that
works one day will likely not work the next."
At the same time, the argument is intensifying over what represents legitimate e-mail, particularly when it ends up being blocked by an antispam filter. Last November, AOL threatened to block e-mail from Gap. Even though Gap said it only sent e-mail to people who explicitly signed up for its mailing list, AOL said that many of its members reported Gap mailings as spam. When it investigated, AOL found that Gap had been offering people a 10 percent discount for providing their e-mail address. Nearly a third of the addresses collected were fake, but they often belonged to other people who did not want the Gap e-mail.
"You can't underestimate the power of people to make up an e-mail address to get a 10 percent discount," said Matt Korn, AOL's executive vice president for network operations.
The other major approach to preventing spam is to block any messages sent from computers and e-mail addresses known to be used by spammers. This is harder than it seems because the spammers are constantly changing their accounts and are adept at methods to make up fake return addresses and hide behind private accounts. That does not prevent the big service providers, and an army of spam vigilantes, from creating blacklists of offenders.
These blacklists, however, often also block legitimate companies and individuals from sending e-mail. That is because the spammers find ways to hijack unprotected computers to relay their messages, thus hiding their true origins.
In the earlier, more innocent days of the Internet, many computers were set up to relay e-mail sent by any other user, anonymously, just to give a helping hand to those with connection problems. Now there still are computers set up to be what is known as an open relay, even though such machines are largely used by spammers.
Another approach to limiting spam, which is favored by big marketers, is to create a "white list" of approved senders, but this raises the question of who will compile such a list. A group of the companies that send e-mail on behalf of major corporations will put forward another proposal tomorrow that would allow senders to certify their identities in every e-mail message they send and report a rating of how much they comply with good mailing standards. Users and Internet service providers would then decide what sort of mail they choose to accept.
"We wanted to come up with a way of shining a big bright light on all those that want to stand in the light and say, `This is who I am, and I was that person yesterday, and I'll be that person tomorrow,' " said Hans Peter Brondmo, a senior vice president at Digital Impact, a major e-mail company and one of the developers of the proposal, known as project Lumos.
Rather than such a self-regulatory approach, the antispam legislation in the Senate would try to make many deceptive e-mail practices illegal. It would force commercial e-mail messages to identify the true sender, have an accurate subject line and offer recipients an easy way to remove their names from marketing lists. And it would impose fines for violators.
For her part, Ms. Sachs, the e-mail marketer, says that any such move would only end up making it harder to run a legitimate business.
"These antispammers should get a life," she said. "Do their fingers hurt too much from pressing the delete key? How much time does that really take from their day?"
By contrast, she said, "70 million people have bad credit. Guess what? Now I can't get mail through to them to help them."
Maybe we can turn the tables on them like people did to Alan Ralsky.
One interesting thing about manual whitehat filtering is that you get a good feel for how many people/orgs you are actually communicating with. I get so much spam now that it was almost impossible to deal with my inbox in an efficient manner prior to implementing a whitehat list. This is the down side of having the same email address for 6+ years.
Not true, you spam villains. I hereby certify that I have never agreed to receive marketing offers over the Internet. Spam is not what America stands for, spam is obnoxious and vile and someday we will come up with a reply weapon that will seek out and damage these creeps. I had to change ISP's because I was getting over 50 spams a day for porn, diet pills and get-rich-quick scams. I dreaded getting my mail because it took so long to download and delete this crap.
It's easy to redirect mail bound for Earthlink/AOL through your ISP's server, using these rules in the "mailertable" file.
aol.com esmtp:your.isp.smtp.server earthlink.net esmtp:your.isp.smtp.server
They'll accept mail from your ISP every time.
For RoadRunner, the only answer is to tighten up your server and/or firewall them out.
I agree with you to an extent. Since POP and IMAP are storage and retrieval mechanisms, I think what's needed is a major redesign of SMTP itself.
Spam and e-mail virii weren't a problem back in the day; as uses for e-mail have evolved over the years, so must the tools. If we can limit what gets injected and transported through the network to begin with, there will be less crap that the users need to filter out.
DOES EMAIL ADVERTISING WORK? It just did. Email advertising is the most effective method of marketing your product. No guess work about how many people will see your ad. They all will. Your ad delivered directly into the inbox thousands, even millions of people. We can help you advertise your service or product from as ow as $399. We can send your ad to up to 55 million email users. 250,000 - $499 *Special $399 500,000 - $649 *Special $499 1 million - $999 *2 million for $1000 3 million - $1999 *Special $1499 10 million - $4999 *Special $3499 Specials end on Friday at 1 pm Pacific. ATTENTION NETWORK MARKETERS: Let us help you generate biz op leads. We can help you generate quality leads. When the sales rep calls you ask for details. Want your own opt in list? We are selling a double opt-in list of 185,000 people who have opted in and are known to have purchased through direct email marketing. We are only selling this list to 10 people for the very low cost of $3500. Won't last. Note: This is national advertising only. We cannot target or segment in anyway. To learn more about email advertising, print this form and fax back to: (702) 447-5895 and a representative will contact you shortly. Name:_______________________ Telephone:(_____)_____-_________ Fax #(_____)_____-__________ Email address:____________________ ----------------------------------------------------------------------------------------- To be removed please send an email to unlist20031@inbox.lv Please note this is the only way to be removed. Removal request via fax or telephone will NOT be honored. ----------------------------------------------------------------------------------------- esutrust jdgfd yi bzcnbccn
By the way, this string, variations of which you see on most spam,
and which I changed to protect the innocent, identifies the spam batch, or what?
esutrust jdgfd yi bzcnbccn
Bring your business back to life with Email Marketing Ever wonder why you get all those email ads in your inbox? Is it because people just love wasting their time or is it because it really works? You're reading this email which will likely result in a sale for us. Don't you think your business could benefit from this service too? Just imagine if this were your ad. The law of averages guarantees that you have to sell something significant out of millions of email ads. Also, we get past spam filters because we can send 1 million emails in a space of only 3 hours! Who else can do that? Guaranteed results or we'll run your ad again free. Call us today 1-831-302-6700 or email us by clicking on this aZXroQuF(Again, I change the string at the bottom.) 'clicking on this' opens up your mailer with the following address: harrisford@levski.com
Your other point about he SMTP protocol is well taken. Whenever I look at RFCs, I always think of the IP by Carrier Pidgeon RFC, and the fellows who managed to send a successful ping by it.
Lets you know what spam I have been getting!
Every commercial e-mail can be traced to its origin - it's whoever the thing is advertising stuff for. Who cares who sent it. In most cases it's easy enough to find out who they are - just go to their web site. Sometimes you'd have to call a number and let them call you back or send information via postal mail. But whatever - it can be done.
So enact legislation containing:
(1) a rebuttable presumption that e-mail advertising a product/service was sent by the person offering that product/service,
(2) a requirement that EVERY commercial e-mail begin its subject line with the characters 'ADV:',
(3) a national opt-out list paid for by e-mail advertisers,
(4) a requirement that e-mail advertisers check the opt-out list before sending mail,
(5) a presumption that: if an e-mail advertiser sends mail to someone who was on the opt-out list when the e-mail was sent, the advertiser willfully disregarded the list,
(6) a requirement that commercial e-mailers take out a bond and file it with their home state - the bond in favor of anyone who brings a successful action for spamming,
(7) recovery of either actual damages -or- statutory damages (i.e., no need to show actual damage) of $1000 per violation of #2 and $5000 per violation of #4, plus costs and attorney's fees,
(8) criminal penalties that include jail time for failing to do #6.
With such legislation in place, consumers could sue spammers into oblivion - or into jail.
So we have a spam/porn operator in Florida that we could go after, but that's about it. Taiwan wouldn't be subject to US law, and CDW has a loophole. And, of course, these "businesses" are probably just hosting companies; whomever pays them for their services is probably hidden behind a maze of NDAs and contracts and front companies intended to obscure their ownership.
Soooo... tell me again how we're gonna do this?
Perhaps the best spam filter on the market is the one included with Apple's free Mail client for MacOSX. It's superb and constantly improves in spam recognition.
Combine that with Apple's new Safari browser--which blocks pop-ups and is compact and elegant and faster than IE--and the Mac platform's near-absence of viruses and you have hassle-free Internet surfing and communications.
************************
I agree. I've been using both the Mail and Safari for about six weeks now and love both of them.
Tia
You can have my Mac when you pry the mouse out of my cold dead fingers!
I use it as my public address and it's been pretty spam-free. Now hotmail, OTH. I have *never* given out that adress and I get more spam per hour than I've gotten in a yahoo year.
Every time I go to hotmail it's "Now who is Jennifer_Anderson and why is she telling me that she wants to cheat on her husband?"
Actually I don't ask. Global delete of all mesages good.
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.